IBM Security Verify Access 10.0.0.0-10.0.7.1 DoS via Asymmetric Resource Consumption
CVE-2024-31883 Published on June 27, 2024
IBM Security Verify Access denial of service
IBM Security Verify Access 10.0.0.0 through 10.0.7.1, under certain configurations, could allow an unauthenticated attacker to cause a denial of service due to asymmetric resource consumption. IBM X-Force ID: 287615.
Vulnerability Analysis
CVE-2024-31883 can be exploited with network access, and requires small amount of user privileges. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.
Weakness Type
Improper Check or Handling of Exceptional Conditions
The software does not properly anticipate or handle exceptional conditions that rarely occur during normal operation of the software.
Products Associated with CVE-2024-31883
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2024-31883 are published in IBM Security Verify Access:
Affected Versions
IBM Security Verify Access:- Version 10.0.0.0, <= 10.0.7.1 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.