Primary

Context

IBM Security Verify Products Log File Information Disclosure Vulnerability

Vulnerability

Patched

A vulnerability exists in multiple IBM Security Verify products, including Bridge Directory Sync, Gateway for Windows Login, and Gateway for Radius, all within specific version ranges. These products improperly store potentially sensitive information in log files, which could be accessed by a local user.

Impact

Exposed sensitive information in log files, potentially leading to unauthorized access or disclosure of confidential data.

Remediation

Users are advised to update to the latest versions of the affected products. Instructions for downloading and installing the updates are available on the IBM Support website.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

2.5

exploitability

3.8

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

2.5

exploitability

3.8

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Security Verify Products Log File Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

IBM Security Verify Gateway for Radius

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating