Primary

Context

IBM Security Verify Access Appliance and Container Cleartext Transmission of Sensitive Data Vulnerability

Vulnerability

Patched

A vulnerability exists in IBM Security Verify Access Appliance and Container versions 10.0.0 through 10.0.8, where sensitive or security-critical data is transmitted in cleartext over a communication channel that can be intercepted by unauthorized actors.

Impact

Exploitation of this vulnerability could lead to unauthorized interception of sensitive or security-critical data.

Remediation

Users are encouraged to update to IBM Security Verify Access version 10.0.9 or IBM Verify Identity Access version 11.0. Instructions for downloading these versions are available on the IBM Support website.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

6.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

6.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Security Verify Access Appliance and Container Cleartext Transmission of Sensitive Data Vulnerability

Vulnerability

Impact

Remediation

Affected Products

IBM Security Verify Access

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating