Primary

Context

IBM Security Verify Access and IBM Verify Identity Access Privilege Escalation Vulnerability

Vulnerability

Patched

A vulnerability exists in IBM Security Verify Access and IBM Verify Identity Access products, specifically in versions 10.0.0.0 through 10.0.9.0 and 11.0.0.0 through 11.0.1.0. This vulnerability could allow a locally authenticated user to escalate privileges to root. The issue arises because certain executions are performed with more privileges than necessary, enabling unauthorized access to elevated rights.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to gain root access on the system.

Remediation

Users are advised to update to IBM Security Verify Access Fixpack 10.0.9.0-IF3 or IBM Verify Identity Access Fixpack 11.0.1.0-IF1. Instructions for downloading these fixpacks are available on the IBM Support Fix Central website.

Added: Oct 6, 2025, 5:31 PM

Updated: Oct 6, 2025, 5:31 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

7.5

exploitability

4.0

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

7.5

exploitability

4.0

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Security Verify Access and IBM Verify Identity Access Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

IBM Security Verify Access

IBM Security Verify Access Docker

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating