Kiuwan SAST - Improper Enforcement of Locked Accounts

A new vulnerability in Kiuwan SAST allows users to log in even when their accounts are disabled. This could expose organizations to serious security risks. A patch is available, and immediate updates are recommended.

VulnerabilitiesMEDIUMUpdated: Apr 14, 2026Published: Apr 14, 2026

Vulnerability Identifier

CVE-2026-24069

5.4

Medium

CISA KEV: NOEPSS: 0.0% · 4.1%

Vendor

Kiuwan

Affected Product

Kiuwan SAST <2.8.2509.4

Vulnerability TypeImproper Enforcement

CWE IDCWE-863

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredLow

User InteractionNone

Workaround AvailableNone

CIA Triad Impact

Low

None

Exploit Maturity

Unproven

PoC Available

Weaponized

Actively Exploited

Vulnerability Timeline

Reported to Vendor2025-04-02

Patch Released2025-07-29

Public Disclosure2026-04-14

Affected Environments

Kiuwan SAST on-premise and cloud

Patch Available

Yes

NVD References1 advisories

Technology

Check if users can log in via SSO after being disabled in Kiuwan settings.

Review access logs for any unauthorized login attempts.

Ensure that all users are updated to the latest version of Kiuwan SAST.

#cve-2026-24069#kiuwan_sast#sso#sec_consult#vulnerability

Featured image for Kiuwan SAST - Improper Enforcement of Locked Accounts

Original Reporting

FDFull Disclosure

AI Summary

CyberPings AI·Reviewed by Rohit Rana

🎯Basically, locked accounts can still log in, which is a security problem.

What Happened

A security advisory from SEC Consult Vulnerability Lab revealed a vulnerability in Kiuwan SAST, specifically related to the improper enforcement of locked accounts in the Web User Interface (WebUI) when using Single Sign-On (SSO). This flaw allows users to log in even if their accounts have been disabled by an administrator.

The Flaw

The vulnerability, identified as CVE-2026-24069, affects versions of Kiuwan SAST prior to 2.8.2509.4. The issue arises because the SSO authentication process does not adequately check the status of the user account mapped from Active Directory (AD). While the Kiuwan Local Analyzer (KLA) correctly denies access for locked accounts, the WebUI does not enforce this restriction, allowing unauthorized access.

What's at Risk

Organizations using Kiuwan SAST for code security may unknowingly expose their systems to unauthorized access. This can lead to potential data breaches and exploitation of sensitive information, particularly if users with elevated privileges are able to log in despite their accounts being disabled.

Patch Status

The vendor has released a patch for the vulnerability, which should be applied immediately. The fixed version is 2.8.2509.4. Users are encouraged to update their systems to mitigate this risk. The advisory also recommends conducting a thorough security review to identify any other potential vulnerabilities.

Immediate Actions

Update Kiuwan SAST to version 2.8.2509.4 or later.
Review user account settings to ensure that disabled accounts cannot log in via SSO.
Monitor access logs for any unauthorized login attempts.

Conclusion

This vulnerability highlights the importance of rigorous account management and authentication checks in software solutions. Organizations must remain vigilant and ensure that all security patches are applied promptly to protect against potential threats.

🔒 Pro Insight

🔒 Pro insight: The flaw underscores the need for robust account management practices in SSO implementations, especially in security-focused applications.

FDFull Disclosure

Read Original

Twitter LinkedIn WhatsApp Telegram

Related Pings

Preview image for Windows 11 - Critical Cumulative Updates Released

Vulnerabilities

HIGH

Windows 11 - Critical Cumulative Updates Released

Microsoft has rolled out critical updates KB5083769 and KB5082052 for Windows 11. These updates fix security vulnerabilities and enhance user features. It's essential to update your system immediately for optimal security.

BCBleepingComputer

Apr 14, 2026

Read Ping Read Source

Vulnerabilities

HIGH

Microsoft Patches SharePoint Zero-Day and 160 Other Vulnerabilities

Microsoft's latest updates fix 165 vulnerabilities, including a critical zero-day in SharePoint. Organizations must act quickly to secure their systems and protect sensitive data.

SWSecurityWeek

Apr 14, 2026

Read Ping Read Source

Vulnerabilities

HIGH

Adobe Reader Zero-Day - Urgent Patch Required Now

A newly discovered zero-day vulnerability in Adobe Reader allows hackers to exploit malicious PDFs. Users must urgently update their software to prevent data theft. Stay safe by being cautious with unknown PDFs and using up-to-date security solutions.

MWMalwarebytes Labs

Apr 14, 2026

Read Ping Read Source

Preview image for Windows 10 - Critical KB5082200 Security Update Released

Vulnerabilities

HIGH

Windows 10 - Critical KB5082200 Security Update Released

Microsoft has released a critical security update for Windows 10, addressing two zero-day vulnerabilities. Users must update to protect their systems from potential exploits. This update enhances security features and resolves numerous issues.

BCBleepingComputer

Apr 14, 2026

Read Ping Read Source

Vulnerabilities

HIGH

Siemens SICAM A8000 - Multiple Vulnerabilities Discovered

Multiple high-impact vulnerabilities have been identified in Siemens SICAM A8000 devices, including a remote operation denial of service flaw. Immediate action is required to mitigate risks.

FDFull Disclosure

Apr 14, 2026

Read Ping Read Source

Preview image for Microsoft April 2026 Patch Tuesday - 168 Vulnerabilities Fixed, Including Two Zero-Days

Vulnerabilities Widely Reported (3 sources)

HIGH

Microsoft April 2026 Patch Tuesday - 168 Vulnerabilities Fixed, Including Two Zero-Days

Microsoft's April 2026 Patch Tuesday addresses 168 vulnerabilities, including two critical zero-days. Security teams must act swiftly to mitigate risks.

CSCyber Security News+2 more

Apr 14, 2026

Read Ping Read Source