34 matches found
EUVD-2024-43791
Malicious code in bioql PyPI...
EUVD-2024-29731
Malicious code in bioql PyPI...
CVE-2025-0163
IBM Security Verify Access Appliance and Docker 10.0 through 10.0.8 could allow a remote attacker to enumerate usernames due to an observable response discrepancy of disabled accounts...
CVE-2025-0163
IBM Security Verify Access Appliance and Docker 10.0 through 10.0.8 could allow a remote attacker to enumerate usernames due to an observable response discrepancy of disabled accounts...
CVE-2023-30999
IBM Security Access Manager Container IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1 could allow an attacker to cause a denial of service due to uncontrolled resource consumption. IBM X-Force ID: 254651...
CVE-2025-0161
IBM Security Verify Access Appliance 10.0.0.0 through 10.0.0.9 and 11.0.0.0 could allow a local user to execute arbitrary code due to improper restrictions on code generation...
CVE-2025-0161 IBM Security Verify Access Appliance code injection
IBM Security Verify Access Appliance 10.0.0.0 through 10.0.0.9 and 11.0.0.0 could allow a local user to execute arbitrary code due to improper restrictions on code generation...
CVE-2025-0161
IBM Security Verify Access Appliance (Affecting 10.0.0.0–10.0.9.0 and 11.0.0.0) is vulnerable to local code execution due to improper restrictions on code generation (CWE-94). The IBM Security Bulletin details that a local user could exploit this to execute arbitrary code. Remediation is to upgra...
CVE-2024-49814
IBM Security Verify Access Appliance 10.0.0 through 10.0.3 could allow a locally authenticated user to increase their privileges due to execution with unnecessary privileges...
CVE-2024-49814 IBM Security Verify Access Appliance Privilege Escalation
IBM Security Verify Access Appliance 10.0.0 through 10.0.3 could allow a locally authenticated user to increase their privileges due to execution with unnecessary privileges...
PT-2025-5796 · Ibm · Ibm Security Verify Access Appliance
Name of the Vulnerable Software and Affected Versions: IBM Security Verify Access Appliance versions 10.0.0 through 10.0.3 Description: The issue allows a locally authenticated user to increase their privileges due to execution with unnecessary privileges. Recommendations: For versions 10.0.0...
Security Bulletin: Multiple Security Vulnerabilities were found in IBM Security Verify Access Appliance. (CVE-2024-49803, CVE-2024-49804, CVE-2024-49805, CVE-2024-49806)
Summary Multiple Security Vulnerabilities were addressed in the IBM Security Verify Access Appliance management interface. Vulnerability Details CVEID:CVE-2024-49803 DESCRIPTION: IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a remote authenticated attacker to execute...
PT-2025-2723 · Ibm · Ibm Security Verify Access Appliance +1
Name of the Vulnerable Software and Affected Versions: IBM Security Verify Access Appliance and Container versions 10.0.0 through 10.0.8 Description: The issue allows a local privileged user to perform unauthorized actions due to incorrect permissions assignment. Recommendations: For versions...
PT-2025-2431 · Ibm · Ibm Security Verify Access Appliance +1
Name of the Vulnerable Software and Affected Versions: IBM Security Verify Access Appliance and Container versions 10.0.0 through 10.0.8 Description: The issue allows an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts, due to cross-site reque...
IBM Security Verify Access Appliance Hardcoding Vulnerability
IBM Security Verify AccessAppliance is a Web appliance-based security solution that provides access control and protection against Web-based threats. A hard-coded vulnerability exists in the IBM Security Verify Access Appliance, which can be exploited by remote attackers to submit a special reque...
Vulnerabilities fixed in IBM Security Verify Access Appliance
IBM has fixed vulnerabilities in IBM Security Verify Access Appliance Versions 10.0.0 to 10.0.8. The vulnerabilities include an ability for remote authenticated attackers to execute arbitrary commands on the system, privilege escalation for locally authenticated non-administrative users through...
CVE-2024-49805
IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data...
CVE-2024-49806 IBM Security Verify Access Appliance hard coded credentials
IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data...
CVE-2024-49805 IBM Security Verify Access Appliance hard coded credentials
IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data...
IBM Security Verify Access 信任管理问题漏洞
IBM Security Verify AccessAppliance is a Web appliance-based security solution that provides access control and protection against Web-based threats. A hard-coded vulnerability exists in the IBM Security Verify Access Appliance, which can be exploited by remote attackers to submit a special reque...