Skip to content

Identity & Access Management · head-to-head

ForgeRock vs SailPoint

On-prem IAM/IGA/PAM/MFA: directories, federation, privileged access, SSO. Counts are scoped to this segment and the selected published-date window. SailPoint carries 3.0× the disclosed CVE volume of ForgeRock. Volume reflects disclosure practice and install base as much as code quality — read it with the severity mix. Sourced from the NIST NVD; lower counts indicate a smaller disclosed vulnerability surface — not necessarily lower risk.

01

Disclosure record

Bars are normalized per row to the larger value; the leading count is emphasized.

Metric comparison: ForgeRock versus SailPoint. Each row gives the metric, ForgeRock’s count on the left and SailPoint’s count on the right.
ForgeRockMetricSailPoint
1Total CVEs3
0Critical1
0High2
1Medium0
0Low0
7Open in latest9
02

Risk profile

Each severity band as a share of the vendor's own total — strips out raw volume so the profiles compare directly.

ForgeRock

0.0% critical
Critical
00.0%
High
00.0%
Medium
1100.0%
Low
00.0%

SailPoint

33.3% critical
Critical
133.3%
High
266.7%
Medium
00.0%
Low
00.0%
03

Recent activity

Latest in-window disclosures per vendor, newest first. Each ID links to its NVD record.

ForgeRock

Recent CVEs affecting ForgeRock
CVESeverityCVSSPublished
CVE-2024-25566(opens NVD record)Medium
6.1
Oct 29, 2024

SailPoint

Recent CVEs affecting SailPoint
CVESeverityCVSSPublished
CVE-2026-5712(opens NVD record)High
8.0
Apr 29, 2026
CVE-2025-10280(opens NVD record)High
7.1
Nov 3, 2025
CVE-2024-10905(opens NVD record)Critical
10.0
Dec 2, 2024

Track new CVEs for these vendors

Get an email the moment a new vulnerability is disclosed for the products you rely on.

Get alerts