4 matches found
Security Bulletin: Multiple Security Vulnerabilities were discovered in IBM Security Verify Access Container (CVE-2024-35140, CVE-2024-35141, CVE-2024-35142)
Summary Vulneribities were discovered during an assessment of the IBM Security Verify Access Container Product. They were addressed in the ISVA 10.0.7 release. Vulnerability Details CVEID:CVE-2024-35142 DESCRIPTION: IBM Security Verify Access could allow a local user to escalate their privileges...
CVE-2023-31001 IBM Security Access Manager Container information disclosure
IBM Security Access Manager Container IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.6.1 temporarily stores sensitive information in files that could be accessed by a local user. IBM X-Force ID: 254653...
Security Bulletin: IBM Security Verify Access fixed a security vulnerability in the product.
Summary IBM Security Verify Access with the advanced access control authentication service enabled could allow an attacker to authenticate as any user on the system. Vulnerability Details CVEID: CVE-2021-39070 DESCRIPTION: IBM Security Verify Access with the advanced access control authentication...
CVE-2021-20537
IBM Security Verify Access Docker 10.0.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID:198918...