CVE-2026-3999
Broken access control vulnerability affecting ID Server
Title source: cnaDescription
A broken access control may allow an authenticated user to perform a horizontal privilege escalation. The vulnerability only impacts specific configurations.
Scores
EPSS
0.0004
EPSS Percentile
13.2%
Details
CWE
CWE-639
Status
published
Products (1)
Pointsharp/ID Server
< 9.0.0
Published
Mar 13, 2026
Tracked Since
Mar 14, 2026