Ibm

Security Verify Information Queue

23 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2024-47120

  • EPSS 0.02%
  • Veröffentlicht 10.09.2025 20:15:32
  • Zuletzt bearbeitet 18.09.2025 20:50:25

IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8 could allow a privileged user to escalate their privileges and attack surface on the host due to the containers running with unnecessary privileges.

7.5

CVE-2024-45671

  • EPSS 0.02%
  • Veröffentlicht 10.09.2025 20:15:32
  • Zuletzt bearbeitet 17.09.2025 21:08:24

IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

6.5

CVE-2024-45669

  • EPSS 0.11%
  • Veröffentlicht 10.09.2025 20:15:31
  • Zuletzt bearbeitet 17.09.2025 21:08:47

IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8 could allow a remote user to cause a denial of service due to improper handling of special characters that could lead to uncontrolled resource consumption.

7.5

CVE-2023-33835

  • EPSS 0.05%
  • Veröffentlicht 31.08.2023 14:15:08
  • Zuletzt bearbeitet 21.11.2024 08:06:03

IBM Security Verify Information Queue 10.0.4 and 10.0.5 could allow a remote attacker to obtain sensitive information that could aid in further attacks against the system. IBM X-Force ID: 256015.

5.3

CVE-2023-33834

  • EPSS 0.05%
  • Veröffentlicht 31.08.2023 14:15:08
  • Zuletzt bearbeitet 21.11.2024 08:06:03

IBM Security Verify Information Queue 10.0.4 and 10.0.5 could allow a remote attacker to obtain sensitive information that could aid in further attacks against the system. IBM X-force ID: 256014.

3.3

CVE-2023-33833

  • EPSS 0.02%
  • Veröffentlicht 31.08.2023 13:15:42
  • Zuletzt bearbeitet 21.11.2024 08:06:02

IBM Security Verify Information Queue 10.0.4 and 10.0.5 stores sensitive information in plain clear text which can be read by a local user. IBM X-Force ID: 256013.

8.8

CVE-2022-35286

  • EPSS 0.11%
  • Veröffentlicht 26.07.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 07:11:02

IBM Security Verify Information Queue 10.0.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 230814.

6.5

CVE-2022-35288

  • EPSS 0.16%
  • Veröffentlicht 25.07.2022 18:23:13
  • Zuletzt bearbeitet 21.11.2024 07:11:03

IBM Security Verify Information Queue 10.0.2 could allow a user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 230818.

7.5

CVE-2022-35287

  • EPSS 0.07%
  • Veröffentlicht 25.07.2022 18:23:13
  • Zuletzt bearbeitet 21.11.2024 07:11:02

IBM Security Verify Information Queue 10.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IB...

8.8

CVE-2022-35285

  • EPSS 0.1%
  • Veröffentlicht 25.07.2022 18:23:12
  • Zuletzt bearbeitet 21.11.2024 07:11:02

IBM Security Verify Information Queue 10.0.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 230812.