Security Verify Access Security Vulnerabilities and Issues — Security Verify Access CVE List

Lucene search

IbmSecurity Verify Access

10 matches found

CVE•added 2024/02/03 1:15 a.m.•64 views

CVE-2023-30999

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow an attacker to cause a denial of service due to uncontrolled resource consumption. IBM X-Force ID: 254651.

7.5CVSS7.1AI score0.00034EPSS

CVE•added 2024/02/07 5:15 p.m.•57 views

CVE-2023-32328

IBM Security Verify Access 10.0.0.0 through 10.0.6.1 uses insecure protocols in some instances that could allow an attacker on the network to take control of the server. IBM X-Force Id: 254957.

9.8CVSS9.2AI score0.00026EPSS

CVE•added 2024/02/07 5:15 p.m.•55 views

CVE-2023-43017

IBM Security Verify Access 10.0.0.0 through 10.0.6.1 could allow a privileged user to install a configuration file that could allow remote access. IBM X-Force ID: 266155.

8.2CVSS6.6AI score0.00016EPSS

CVE•added 2024/02/03 1:15 a.m.•52 views

CVE-2023-31006

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) is vulnerable to a denial of service attacks on the DSC server. IBM X-Force ID: 254776.

7.5CVSS7.1AI score0.00031EPSS

CVE•added 2024/02/03 1:15 a.m.•49 views

CVE-2023-31005

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow a local user to escalate their privileges due to an improper security configuration. IBM X-Force ID: 254767.

7.8CVSS7.3AI score0.00019EPSS

CVE•added 2024/02/03 1:15 a.m.•49 views

CVE-2023-32329

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow a user to download files from an incorrect repository due to improper file validation. IBM X-Force ID: 254972.

6.2CVSS5.5AI score0.00009EPSS

CVE•added 2024/02/03 1:15 a.m.•45 views

CVE-2023-31004

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow a remote attacker to gain access to the underlying system using man in the middle techniques. IBM X-Force ID: 254765.

9CVSS8.6AI score0.00119EPSS

CVE•added 2024/02/07 5:15 p.m.•45 views

CVE-2023-32330

IBM Security Verify Access 10.0.0.0 through 10.0.6.1 uses insecure calls that could allow an attacker on the network to take control of the server. IBM X-Force ID: 254977.

9.8CVSS9AI score0.00049EPSS

CVE•added 2024/02/03 1:15 a.m.•43 views

CVE-2023-32327

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulner...

7.1CVSS6.8AI score0.00059EPSS

CVE•added 2024/02/03 1:15 a.m.•43 views

CVE-2023-43016

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow a remote user to log into the server due to a user account with an empty password. IBM X-Force ID: 266154.

7.3CVSS6.9AI score0.00073EPSS