Primary

Context

IBM Security Verify Directory (Container) Unrestricted File Upload Vulnerability

Vulnerability

Patched

A vulnerability allowing unrestricted file uploads has been identified in IBM Security Verify Directory (Container) versions 10.0.0 through 10.0.0.3. This issue arises because the application does not properly validate file types, enabling privileged users to upload malicious files. These files could be sent to other users to facilitate further attacks against the system.

Impact

Exploitation of this vulnerability could lead to unauthorized file uploads, allowing for the distribution of malicious files that could be used to compromise the system or its users.

Remediation

Users are advised to update to IBM Security Verify Directory (Container) version 10.0.0.4 or later. The update can be downloaded from the IBM Security Verify Directory version 10.0.0.4 download document.

Added: Apr 23, 2026, 12:32 AM

Updated: Apr 23, 2026, 12:32 AM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

0.6

exploitability

4.4

remediation

7.7

relevance

6.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

0.6

exploitability

4.4

remediation

7.7

relevance

6.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Security Verify Directory (Container) Unrestricted File Upload Vulnerability

Vulnerability

Impact

Remediation

Affected Products

IBM Security Verify Directory

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating