Primary

Context

IBM Security Verify Information Queue Cryptographic Vulnerability Allowing Decryption of Sensitive Information

Vulnerability

Patched

A vulnerability exists in IBM Security Verify Information Queue versions 10.0.5, 10.0.6, 10.0.7, and 10.0.8, where weaker than expected cryptographic algorithms could enable an attacker to decrypt highly sensitive information.

Impact

Exploitation of this vulnerability could lead to unauthorized decryption of sensitive information, potentially allowing attackers to access confidential data.

Remediation

Users are advised to upgrade to IBM Security Verify Information Queue version 10.0.11. The latest ISIQ images for v10.0.11 can be downloaded from the IBM Security Information Queue Starter Kit page.

Added: Sep 10, 2025, 8:21 PM

Updated: Sep 10, 2025, 8:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Security Verify Information Queue Cryptographic Vulnerability Allowing Decryption of Sensitive Information

Vulnerability

Impact

Remediation

Affected Products

IBM Security Verify Information Queue

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating