Security Verify Information Queue@10.0.2 Security Vulnerabilities and Issues — Security Verify Information Queue@10.0.2 CVE List

Lucene search

IbmSecurity Verify Information Queue10.0.2

6 matches found

CVE•added 2022/07/25 6:23 p.m.•67 views

CVE-2022-35284

IBM Security Verify Information Queue 10.0.2 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie. IBM X-Force ID: 230811.

7.5CVSS7.1AI score0.00092EPSS

CVE•added 2022/07/25 6:23 p.m.•56 views

CVE-2022-35287

IBM Security Verify Information Queue 10.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 230817.

7.5CVSS7.4AI score0.00083EPSS

CVE•added 2022/07/25 6:23 p.m.•56 views

CVE-2022-35288

IBM Security Verify Information Queue 10.0.2 could allow a user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 230818.

6.5CVSS5.9AI score0.00091EPSS

CVE•added 2022/07/14 5:15 p.m.•53 views

CVE-2022-35283

IBM Security Verify Information Queue 10.0.2 could allow an authenticated user to cause a denial of service with a specially crafted HTTP request.

6.5CVSS6.2AI score0.00627EPSS

CVE•added 2022/07/26 3:15 p.m.•46 views

CVE-2022-35286

IBM Security Verify Information Queue 10.0.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 230814.

8.8CVSS8.4AI score0.00049EPSS

CVE•added 2022/07/25 6:23 p.m.•43 views

CVE-2022-35285

8.8CVSS8.4AI score0.00068EPSS