Identity & Access Management · head-to-head
Okta vs SailPoint
On-prem IAM/IGA/PAM/MFA: directories, federation, privileged access, SSO. Counts are scoped to this segment and the selected published-date window. SailPoint carries 1.8× the disclosed CVE volume of Okta. Volume reflects disclosure practice and install base as much as code quality — read it with the severity mix. Sourced from the NIST NVD; lower counts indicate a smaller disclosed vulnerability surface — not necessarily lower risk.
Disclosure record
Bars are normalized per row to the larger value; the leading count is emphasized.
| Okta | Metric | SailPoint | ||
|---|---|---|---|---|
| 5 | Total CVEs | 9 | ||
| 0 | Critical | 3 | ||
| 3 | High | 5 | ||
| 1 | Medium | 1 | ||
| 1 | Low | 0 | ||
| 0 | Open in latest | 9 |
Risk profile
Each severity band as a share of the vendor's own total — strips out raw volume so the profiles compare directly.
Okta
0.0% critical- Critical
- 00.0%
- High
- 360.0%
- Medium
- 120.0%
- Low
- 120.0%
SailPoint
33.3% critical- Critical
- 333.3%
- High
- 555.6%
- Medium
- 111.1%
- Low
- 00.0%
Recent activity
Latest in-window disclosures per vendor, newest first. Each ID links to its NVD record.
Okta
| CVE | Severity | CVSS | Published |
|---|---|---|---|
| CVE-2024-9191(opens NVD record) | High | 7.1 | Nov 1, 2024 |
| CVE-2024-7061(opens NVD record) | Medium | 5.5 | Aug 7, 2024 |
| CVE-2023-0093(opens NVD record) | High | 8.8 | Mar 6, 2023 |
| CVE-2022-1697(opens NVD record) | Low | 3.9 | Sep 6, 2022 |
| CVE-2022-1030(opens NVD record) | High | 8.8 | Mar 23, 2022 |
SailPoint
| CVE | Severity | CVSS | Published |
|---|---|---|---|
| CVE-2026-5712(opens NVD record) | High | 8.0 | Apr 29, 2026 |
| CVE-2025-10280(opens NVD record) | High | 7.1 | Nov 3, 2025 |
| CVE-2024-10905(opens NVD record) | Critical | 10.0 | Dec 2, 2024 |
| CVE-2024-2228(opens NVD record) | High | 7.1 | Mar 22, 2024 |
| CVE-2024-2227(opens NVD record) | Critical | 10.0 | Mar 22, 2024 |
| CVE-2024-1714(opens NVD record) | High | 7.1 | Feb 21, 2024 |
Track new CVEs for these vendors
Get an email the moment a new vulnerability is disclosed for the products you rely on.