CVE-2026-3999

UNKNOWN 0.0

Broken access control vulnerability affecting ID Server

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

A broken access control may allow an authenticated user to perform a horizontal privilege escalation. The vulnerability only impacts specific configurations.

CWE	CWE-639
Vendor	pointsharp
Product	id server
Published	Mar 13, 2026
Last Updated	Mar 16, 2026

Stay Ahead of the Next One

Get instant alerts for pointsharp id server

Be the first to know when new unknown vulnerabilities affecting pointsharp id server are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Pointsharp / ID Server

0 < 9.0.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

docs.pointsharp.com: https://docs.pointsharp.com/psa/advisories/psa-2026-001.html

Credits

🔍 Reema AlQahtani, Haboob Cybersecurity Services