Primary

Context

IBM Security Verify Access Appliance and Container Cross-Site Request Forgery Vulnerability

Vulnerability

Patched

A cross-site request forgery (CSRF) vulnerability has been identified in IBM Security Verify Access Appliance and Container versions 10.0.0 through 10.0.8. This vulnerability could allow an attacker to perform malicious and unauthorized actions by exploiting the trust a user has with the website.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed on behalf of a trusted user.

Remediation

Users are advised to update to IBM Security Verify Access version 10.0.9 or IBM Verify Identity Access version 11.0. Instructions for downloading these versions are available on the IBM Support website.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

6.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

6.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Security Verify Access Appliance and Container Cross-Site Request Forgery Vulnerability

Vulnerability

Impact

Remediation

Affected Products

IBM Security Verify Access

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating