CVE-2026-24069

Name of the Vulnerable Software and Affected Versions Kiuwan Cloud (affected versions not specified) Kiuwan SAST on-premise (KOP) versions prior to 2.8.2509.4

Description Kiuwan SAST improperly authorizes SSO logins for mapped user accounts that have been locally disabled. This allows users whose accounts are disabled in the user admin settings to maintain access to the application.

Recommendations Update Kiuwan SAST on-premise (KOP) to version 2.8.2509.4 or later. At the moment, there is no information about a newer version that contains a fix for this vulnerability for Kiuwan Cloud.