IBM Security Verify Information Queue
By the Year
In 2024 there have been 0 vulnerabilities in IBM Security Verify Information Queue . Security Verify Information Queue did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 3 | 7.17 |
2021 | 4 | 6.08 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Security Verify Information Queue vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Security Verify Information Queue Security Vulnerabilities
IBM Security Verify Information Queue 10.0.2 could allow a user to obtain sensitive information
CVE-2022-35288
6.5 - Medium
- July 25, 2022
IBM Security Verify Information Queue 10.0.2 could allow a user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 230818.
IBM Security Verify Information Queue 10.0.2 contains hard-coded credentials, such as a password or cryptographic key
CVE-2022-35287
7.5 - High
- July 25, 2022
IBM Security Verify Information Queue 10.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 230817.
Use of Hard-coded Credentials
IBM Security Verify Information Queue 10.0.2 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie
CVE-2022-35284
7.5 - High
- July 25, 2022
IBM Security Verify Information Queue 10.0.2 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie. IBM X-Force ID: 230811.
Reliance on Cookies without Validation and Integrity Checking
IBM Security Verify Information Queue 1.0.6 and 1.0.7 could
CVE-2021-20402
2.7 - Low
- February 11, 2021
IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 196076.
Generation of Error Message Containing Sensitive Information
IBM Security Verify Information Queue 1.0.6 and 1.0.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user
CVE-2021-20403
8.8 - High
- February 11, 2021
IBM Security Verify Information Queue 1.0.6 and 1.0.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
Session Riding
IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a user on the network to cause a denial of service due to an invalid cookie value
CVE-2021-20404
5.3 - Medium
- February 11, 2021
IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a user on the network to cause a denial of service due to an invalid cookie value that could prevent future logins. IBM X-Force ID: 196078.
IBM Security Verify Information Queue 1.0.6 and 1.0.7 could
CVE-2021-20405
7.5 - High
- February 11, 2021
IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a user to perform unauthorized activities due to improper encoding of output. IBM X-Force ID: 196183.
Output Sanitization
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Security Verify Information Queue or by IBM? Click the Watch button to subscribe.