Shodan
Vulnerabilities
Vulnerable Software
Ibm:  >> Security Verify Access  >> 10.0.0.0  Security Vulnerabilities
CVE-2024-31872
IBM Security Verify Access Appliance 10.0.0 through 10.0.7 could allow a malicious actor to conduct a man in the middle attack when deploying Open Source scripts due to missing certificate validation. IBM X-Force ID: 287316.
CVSS Score
7.5
EPSS Score
0.0
Published
2024-04-10
CVE-2024-31873
IBM Security Verify Access Appliance 10.0.0 through 10.0.7 contains hard-coded credentials which it uses for its own inbound authentication that could be obtained by a malicious actor. IBM X-Force ID: 287317.
CVSS Score
7.5
EPSS Score
0.0
Published
2024-04-10
CVE-2024-31874
IBM Security Verify Access Appliance 10.0.0 through 10.0.7 uses uninitialized variables when deploying that could allow a local user to cause a denial of service. IBM X-Force ID: 287318.
CVSS Score
6.2
EPSS Score
0.0
Published
2024-04-10
CVE-2023-43017
IBM Security Verify Access 10.0.0.0 through 10.0.6.1 could allow a privileged user to install a configuration file that could allow remote access. IBM X-Force ID: 266155.
CVSS Score
8.2
EPSS Score
0.0
Published
2024-02-07
CVE-2023-32328
IBM Security Verify Access 10.0.0.0 through 10.0.6.1 uses insecure protocols in some instances that could allow an attacker on the network to take control of the server. IBM X-Force Id: 254957.
CVSS Score
7.5
EPSS Score
0.0
Published
2024-02-07
CVE-2023-32330
IBM Security Verify Access 10.0.0.0 through 10.0.6.1 uses insecure calls that could allow an attacker on the network to take control of the server. IBM X-Force ID: 254977.
CVSS Score
7.5
EPSS Score
0.0
Published
2024-02-07
CVE-2023-43016
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow a remote user to log into the server due to a user account with an empty password. IBM X-Force ID: 266154.
CVSS Score
7.3
EPSS Score
0.001
Published
2024-02-03
CVE-2023-31004
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow a remote attacker to gain access to the underlying system using man in the middle techniques. IBM X-Force ID: 254765.
CVSS Score
8.3
EPSS Score
0.001
Published
2024-02-03
CVE-2023-31005
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow a local user to escalate their privileges due to an improper security configuration. IBM X-Force ID: 254767.
CVSS Score
6.2
EPSS Score
0.0
Published
2024-02-03
CVE-2023-31006
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) is vulnerable to a denial of service attacks on the DSC server. IBM X-Force ID: 254776.
CVSS Score
6.5
EPSS Score
0.0
Published
2024-02-03


Products
Pricing
Contact Us

Shodan ® - All rights reserved