IBM Verify Identity Access
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in IBM Verify Identity Access.
By the Year
In 2026 there have been 0 vulnerabilities in IBM Verify Identity Access. Last year, in 2025 Verify Identity Access had 4 security vulnerabilities published. Right now, Verify Identity Access is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 4 | 6.40 |
It may take a day or so for new Verify Identity Access vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Verify Identity Access Security Vulnerabilities
IBM Security Verify Access 10.0.0-10.0.8 L Priv Escalation via Improper Perms
CVE-2024-45657
6.7 - Medium
- February 04, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a local privileged user to perform unauthorized actions due to incorrect permissions assignment.
Incorrect Permission Assignment for Critical Resource
IBM Security Verify Access 10.0.0-10.0.8: Cleartext Sensitive Data Exposure
CVE-2024-43187
7.5 - High
- February 04, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.
Cleartext Transmission of Sensitive Information
XSS in IBM Security Verify Access 10.0.010.0.8 Web UI
CVE-2024-40700
6.1 - Medium
- February 04, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
XSS
IBM Security Verify Access 10.0.x Remote Info Disclosure
CVE-2024-45659
5.3 - Medium
- February 04, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.
Generation of Error Message Containing Sensitive Information
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Verify Identity Access or by IBM? Click the Watch button to subscribe.
