Primary

Context

IBM Verify Identity Access Digital Credentials Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in IBM Verify Identity Access Digital Credentials version 24.06. This issue allows an authenticated user to crash the service by sending a specially crafted POST request.

Impact

Exploitation of this vulnerability can lead to a service crash, causing a denial-of-service condition where the application becomes unresponsive or unavailable.

Remediation

Users are advised to update to the latest version of IBM Verify Identity Access Digital Credentials, which can be downloaded from the IBM Cloud Registry.

Added: Jun 6, 2025, 2:18 AM

Updated: Jun 6, 2025, 2:18 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

5.2

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

5.2

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Verify Identity Access Digital Credentials Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating