CVE-2023-25927

IBM Security Verify Access denial of service

CVSS 6.5 MEDIUMEPSS 1.5%CWE-20

IBM Security Verify Access 10.0.0, 10.0.1, 10.0.2, 10.0.3, 10.0.4, and 10.0.5 could allow an attacker to crash the webseald process using specially crafted HTTP requests resulting in loss of access to the system. IBM X-Force ID: 247635.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Produtos afetados

IBM · Security Verify Access

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://seclists.org/fulldisclosure/2024/Nov/0 http://seclists.org/fulldisclosure/2024/Nov/1 https://exchange.xforce.ibmcloud.com/vulnerabilities/247635 https://https://www.ibm.com/support/pages/node/6989653