Ibm

Security Verify Privilege On-premises

15 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-31887

  • EPSS 0.09%
  • Published 16.04.2024 22:15:35
  • Last modified 13.08.2025 13:33:15

IBM Security Verify Privilege 11.6.25 could allow an unauthenticated actor to obtain sensitive information from the SOAP API. IBM X-Force ID: 287651.

7.5

CVE-2022-43890

  • EPSS 0.09%
  • Published 04.03.2024 16:15:48
  • Last modified 08.05.2025 16:57:57

IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information through an HTTP request that could aid an attacker in further attacks against the system. IBM X-Force ID: 240453.

5.3

CVE-2022-43891

  • EPSS 0.04%
  • Published 17.10.2023 03:15:09
  • Last modified 21.11.2024 07:27:19

IBM Security Verify Privilege On-Premises 11.5 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. ...

5.3

CVE-2022-43892

  • EPSS 0.06%
  • Published 17.10.2023 03:15:09
  • Last modified 21.11.2024 07:27:19

IBM Security Verify Privilege On-Premises 11.5 does not validate, or incorrectly validates, a certificate which could disclose sensitive information which could aid further attacks against the system. IBM X-Force ID: 240455.

5.3

CVE-2021-38859

  • EPSS 0.08%
  • Published 17.10.2023 02:15:10
  • Last modified 21.11.2024 06:18:06

IBM Security Verify Privilege On-Premises 11.5 could allow a user to obtain version number information using a specially crafted HTTP request that could be used in further attacks against the system. IBM X-Force ID: 207899.

8.8

CVE-2022-22375

  • EPSS 0.04%
  • Published 17.10.2023 02:15:10
  • Last modified 21.11.2024 06:46:43

IBM Security Verify Privilege On-Premises 11.5 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 221681.

4.3

CVE-2022-22380

  • EPSS 0.02%
  • Published 17.10.2023 02:15:10
  • Last modified 21.11.2024 06:46:43

IBM Security Verify Privilege On-Premises 11.5 could allow an attacker to spoof a trusted entity due to improperly validating certificates. IBM X-Force ID: 221957.

7.5

CVE-2022-22385

  • EPSS 0.03%
  • Published 17.10.2023 02:15:10
  • Last modified 21.11.2024 06:46:43

IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information to an attacked due to the transmission of data in clear text. IBM X-Force ID: 221962.

5.9

CVE-2022-22386

  • EPSS 0.02%
  • Published 17.10.2023 02:15:10
  • Last modified 21.11.2024 06:46:44

IBM Security Verify Privilege On-Premises 11.5 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive i...

5.3

CVE-2022-43889

  • EPSS 0.08%
  • Published 17.10.2023 02:15:10
  • Last modified 21.11.2024 07:27:19

IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information through an HTTP request that could aid an attacker in further attacks against the system. IBM X-Force ID: 240452.