CVEDB API

Vulnerabilities

Vulnerable Software

Ibm: >> Security Verify Access >> 10.0.0.7 Security Vulnerabilities

CVE-2023-32327

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 254783.

CVSS Score

7.1

EPSS Score

0.0

Published

2024-02-03

CVE-2023-32329

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow a user to download files from an incorrect repository due to improper file validation. IBM X-Force ID: 254972.

CVSS Score

6.2

EPSS Score

0.0

Published

2024-02-03

CVE-2023-30999

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow an attacker to cause a denial of service due to uncontrolled resource consumption. IBM X-Force ID: 254651.

CVSS Score

7.5

EPSS Score

0.0

Published

2024-02-03

Page 3

Vulnerabilities

Vulnerable Software

Ibm: >> Security Verify Access >> 10.0.0.7 Security Vulnerabilities

Products

Pricing

Contact Us