Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm security verify governance 10.0 vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2023-33840
IBM Security Verify Governance 10.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...
Ibm Security Verify Governance 10.0
Ibm Security Verify Governance 10.0.1
8.8
CVSSv3
CVE-2023-33839
IBM Security Verify Governance 10.0 could allow a remote authenticated malicious user to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 256036.
Ibm Security Verify Governance 10.0
Ibm Security Verify Governance 10.0.1
6.5
CVSSv3
CVE-2023-35016
IBM Security Verify Governance, Identity Manager 10.0 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-For...
Ibm Security Verify Governance 10.0
8.8
CVSSv3
CVE-2023-35019
IBM Security Verify Governance, Identity Manager 10.0 could allow a remote authenticated malicious user to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 257873.
Ibm Security Verify Governance 10.0
7.5
CVSSv3
CVE-2022-22452
IBM Security Verify Identity Manager 10.0 uses an inadequate account lockout setting that could allow a remote malicious user to brute force account credentials. IBM X-Force ID: 224918.
Ibm Security Verify Governance 10.0
9.8
CVSSv3
CVE-2022-22455
IBM Security Verify Governance Identity Manager 10.0 virtual appliance component performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. IBM X-Force ID: 224989.
Ibm Security Verify Governance 10.0
7.5
CVSSv3
CVE-2022-22460
IBM Security Verify Identity Manager 10.0 contains sensitive information in the source code repository that could be used in further attacks against the system. IBM X-Force ID: 225013.
Ibm Security Verify Governance 10.0
3.8
CVSSv3
CVE-2022-22450
IBM Security Verify Identity Manager 10.0 could allow a privileged user to upload a malicious file by bypassing extension security in an HTTP request. IBM X-Force ID: 224916.
Ibm Security Verify Governance 10.0
7.5
CVSSv3
CVE-2022-22453
IBM Security Verify Identity Manager 10.0 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 224919.
Ibm Security Verify Governance 10.0
5.5
CVSSv3
CVE-2022-22470
IBM Security Verify Governance 10.0 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 225232.
Ibm Security Verify Governance 10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »