Primary

Context

IBM Security Verify Access and Identity Access Docker Script Execution Vulnerability

Vulnerability

Patched

A vulnerability exists in IBM Security Verify Access and IBM Verify Identity Access Docker versions 10.0.0.0 prior to 10.0.9.0 and 11.0.0.0 prior to 11.0.1.0. This vulnerability could allow a locally authenticated user to execute malicious scripts from outside of its control sphere.

Impact

Exploitation of this vulnerability could lead to unauthorized script execution, allowing for potential manipulation or interference with the application or its data.

Remediation

Users are advised to update to IBM Security Verify Access Fixpack 10.0.9.0-IF3 or IBM Verify Identity Access Fixpack 11.0.1.0-IF1. Instructions for downloading these fixpacks are available on the IBM Support Fix Central website.

Added: Oct 6, 2025, 5:32 PM

Updated: Oct 6, 2025, 5:32 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

0.4

exploitability

4.0

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

0.4

exploitability

4.0

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Security Verify Access and Identity Access Docker Script Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

IBM Security Verify Access

IBM Security Verify Access Docker

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating