CVEs (23)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Ibm 1Security Verify Information Queue Sep 18, 2025 Sep 10, 2025 N/A· v4 6.8 MEDIUM· v3 N/A· v2 IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8 could allow a privileged user to escalate their privileges and attack surface on the host due to the containers running with unnecessary privileges...Show more |
1Ibm 1Security Verify Information Queue Sep 17, 2025 Sep 10, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8
uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. |
1Ibm 1Security Verify Information Queue Sep 17, 2025 Sep 10, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8 could allow a remote user to cause a denial of service due to improper handling of special characters that could lead to uncontrolled resource cons...Show more |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Aug 31, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 IBM Security Verify Information Queue 10.0.4 and 10.0.5 could allow a remote attacker to obtain sensitive information that could aid in further attacks against the system. IBM X-Force ID: 256015. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Aug 31, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 IBM Security Verify Information Queue 10.0.4 and 10.0.5 could allow a remote attacker to obtain sensitive information that could aid in further attacks against the system. IBM X-force ID: 256014. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Aug 31, 2023 N/A· v4 3.3 LOW· v3 N/A· v2 IBM Security Verify Information Queue 10.0.4 and 10.0.5 stores sensitive information in plain clear text which can be read by a local user. IBM X-Force ID: 256013. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Jul 26, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 IBM Security Verify Information Queue 10.0.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-...Show more |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Jul 25, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 IBM Security Verify Information Queue 10.0.2 could allow a user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 230818. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Jul 25, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 IBM Security Verify Information Queue 10.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or e...Show more |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Jul 25, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 IBM Security Verify Information Queue 10.0.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-...Show more |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Jul 25, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 IBM Security Verify Information Queue 10.0.2 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie. IBM X-Force ID: 230811. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Jul 14, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 IBM Security Verify Information Queue 10.0.2 could allow an authenticated user to cause a denial of service with a specially crafted HTTP request. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Feb 12, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 IBM Security Verify Information Queue 1.0.6 and 1.0.7 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external compone...Show more |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Feb 12, 2021 N/A· v4 8.1 HIGH· v3 4.8 MEDIUM· v2 IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a user to impersonate another user on the system due to incorrectly updating the session identifier. IBM X-Force ID: 198191. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Feb 12, 2021 N/A· v4 5.3 MEDIUM· v3 3.5 LOW· v2 IBM Security Verify Information Queue 1.0.6 and 1.0.7 sends user credentials in plain clear text which can be read by an authenticated user using man in the middle techniques. IBM X-Force ID: 198190. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Feb 12, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this...Show more |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Feb 12, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 IBM Security Verify Information Queue 1.0.6 and 1.0.7 could disclose highly sensitive information to a local user due to inproper storage of a plaintext cryptographic key. IBM X-Force ID: 198187. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Feb 12, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 IBM Security Verify Information Queue 1.0.6 and 1.0.7 discloses sensitive information in source code that could be used in further attacks against the system. IBM X-Force ID: 196185. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Feb 12, 2021 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 IBM Security Verify Information Queue 1.0.6 and 1.0.7 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196184. |
1Ibm 1Security Verify Information Queue Nov 21, 2024 Feb 11, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a user to perform unauthorized activities due to improper encoding of output. IBM X-Force ID: 196183. |