SailPoint: A new capability in Identity Security Cloud
SailPoint has introduced a new capability in Identity Security Cloud: the option to automatically delete accounts when an identity is terminated
Why This Matters
- Many customers need more than just disabling accounts
- Until now, this required custom rules (BeforeProvisioning), which slowed projects and added overhead
What Has Changed
- Admins can now configure Lifecycle States to delete accounts (not just enable/disable)
- All deletes are audited, so you know who did what, when, and on which system
- For disconnected systems, SailPoint creates a manual task and sends a notification
Timelines
- Sandbox rollout: Sept 15, 2025
- Production rollout: Week of Sept 22, 2025
CyberArk: CA25-30 – Possible stack overflow that can lead to denial of service (DoS).
Issued: September 3, 2025
Updated: N/A
Version: 1.0
Severity: High
CVSS Score: 7
Third-party publication / CVE:
CVE-2025-48924</a >
Impact: Possible stack overflow that can lead to denial of service (DoS).
Affected products and versions:
z/OS Credential Provider All versions prior to version 14.2
Resolution:
Upgrade to a patch version from the table below by downloading the patch from the respective link and following the instructions in our online documentation.
If a patch isn’t available for your installed version, or if you want to move to the latest available version, upgrade your component according to the upgrade version compatibility docs.
Installed version:
z/OS Credential Provider (Java Provider) 14.2 (LTS) and its patches prior to 14.2.3 – Patch version: 14.2.3 –
z/OS Credential Provider (Java Provider) 12.6 (LTS) and its patches prior to 12.6.6 or earlier versions – Patch version: 12.6.6
Temporary mitigation:
There is no temporary mitigation available for this security bulletin.
CyberArk: CA25-29 – Potential exposure to Prototype Pollution as described in the above third-party CVE
Issued: August 27, 2025
Updated: N/A
Version: 1.0
Severity: High
CVSS Score: 7.8
Third-party publication / CVE: CVE-2024-38996
Impact: Potential exposure to Prototype Pollution as described in the above third-party CVE.
Affected products and versions:
Password Vault Web Access (PVWA) Self-Hosted: All versions earlier than 14.2.4 – All product subsets are affected.
* This Security Bulletin applies only to the listed affected products. If this issue also affects another CyberArk product, it will be addressed separately in accordance with CyberArk’s Product Vulnerability Management Policy.
** Relates only to versions that are within their development life cycle. Refer to our End of Life policy for details.
Resolution:
Upgrade to a patch version from the table below by downloading the patch from the respective link and following the instructions in our online documentation.
If a patch isn’t available for your installed version, or if you want to move to the latest available version, upgrade your component according to the upgrade version compatibility docs.
PAM On Cloud customers:
- Version 14.2 and later: Download and deploy the patched image from the Marketplace for your deployed solution:
- Versions earlier than 14.2: Follow the instructions for on-premises patches for your deployed version.
Temporary mitigation:
There is no temporary mitigation available for this security bulletin.
Exploited in the wild in a CyberArk environment:
Not to the best of CyberArk’s knowledge.
SailPoint Identity Security Cloud – New Updates
Key Highlights from this latest release:
- BeyondTrust Password Safe On-Premise Integration: Identity Security Cloud now supports the BeyondTrust Password Safe (On-Premise) credential provider for Secrets Management. This enables credential cycling directly from BeyondTrust, providing stronger security and streamlined password management
- Workflows – Execution Playback:
A new execution playback feature has been introduced for Workflows. Administrators can now “playback” workflow execution logs in the same format as Test Workflow, viewing input/output data step by step. Even if the workflow has been modified since execution, playback restores the original configuration for accurate review and troubleshooting
For the full release notes, visit: https://community.sailpoint.com/t5/SaaS-Release-Notes/tkb-p/saas-release-notes
