Security Verify Governance Security Vulnerabilities and Issues — Security Verify Governance CVE List

Lucene search

IbmSecurity Verify Governance

3 matches found

CVE•added 2023/07/31 1:15 a.m.•60 views

CVE-2023-35016

IBM Security Verify Governance, Identity Manager 10.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 257772.

6.5CVSS6.3AI score0.00063EPSS

CVE•added 2022/12/22 10:15 p.m.•51 views

CVE-2022-22456

IBM Security Verify Governance, Identity Manager 10.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Forc...

6.1CVSS4.8AI score0.00094EPSS

CVE•added 2022/12/22 10:15 p.m.•51 views

CVE-2022-22458

IBM Security Verify Governance, Identity Manager 10.0.1 stores user credentials in plain clear text which can be read by a remote authenticated user. IBM X-Force ID: 225009.

6.5CVSS5.8AI score0.00031EPSS