Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Security Verify Access Appliance — Vulnerabilities & Security Advisories 29

All 29 CVE vulnerabilities found in Security Verify Access Appliance, with AI-generated Chinese analysis, references, and POCs.

This page documents Common Weakness Enumerations associated with the Security Verify Access Appliance product. It aggregates vulnerability data for this specific appliance solution provided by IBM, focusing on security flaws identified within its software architecture and configuration settings. The collection encompasses a broad spectrum of weakness types, including but not limited to cross-site scripting, insecure direct object references, and improper access control mechanisms. This repository covers vulnerabilities discovered and disclosed from January 2018 through the present date, ensuring a comprehensive view of the product's security posture over time. By navigating this resource, users can efficiently track vendor advisories to stay informed about critical patches and updates issued for the appliance. It also allows security professionals to understand the context and severity of specific weakness classes as they apply to enterprise identity management solutions. Furthermore, administrators can look up the product’s vulnerability history to assess risk exposure and prioritize remediation efforts based on the chronological progression of reported issues. The data is structured to facilitate analysis, enabling organizations to identify recurring patterns in vulnerability reporting for this platform. This approach supports proactive security management by providing transparent access to historical and current threat intelligence. The information serves as a technical reference for security auditors and system administrators tasked with maintaining the integrity of their access control infrastructure.

Vendor: IBM

CVE IDTitleCVSSSeverityPublished
CVE-2025-36354 IBM Security Verify Access command execution CWE-78 7.3 High2025-10-06
CVE-2025-36355 IBM Security Verify Access code execution CWE-829 8.5 High2025-10-06
CVE-2025-36356 IBM Security Verify Access privilege escalation CWE-250 9.3 Critical2025-10-06
CVE-2024-49814 IBM Security Verify Access Appliance Privilege Escalation CWE-250 7.8 High2025-02-06
CVE-2024-45657 IBM Security Verify Access incorrect privilege assignment CWE-732 5.0 Medium2025-02-04
CVE-2024-35138 IBM Security Verify Access cross-site request forgery CWE-352 6.5 Medium2025-02-04
CVE-2024-43187 IBM Security Verify Access information disclosure CWE-319 5.9 Medium2025-02-04
CVE-2024-45658 IBM Security Verify Access information disclosure CWE-209 2.7 Low2025-02-04
CVE-2024-40700 IBM Security Verify Access cross-site scripting CWE-79 6.1 Medium2025-02-04
CVE-2024-45659 IBM Security Verify Access information disclosure CWE-209 5.3 Medium2025-02-04
CVE-2024-31874 IBM Security Verify Access Appliance denial of service CWE-457 6.2 Medium2024-04-10
CVE-2024-31873 IBM Security Verify Access Appliance information disclosure CWE-798 7.5 High2024-04-10
CVE-2024-31871 IBM Security Verify Access Appliance improper certificate validation CWE-295 7.5 High2024-04-10
CVE-2024-31872 IBM Security Verify Access Appliance missing certificate validation CWE-295 7.5 High2024-04-10
CVE-2023-38369 IBM Security Access Manager Container information disclosure CWE-521 6.2 Medium2024-02-07
CVE-2023-31002 IBM Security Access Manager Container information disclosure 5.1 Medium2024-02-07
CVE-2023-43017 IBM Security Verify Access man in the middle CWE-295 8.2 High2024-02-07
CVE-2023-32330 IBM Security Verify Access man in the middle CWE-295 7.5 High2024-02-07
CVE-2023-32328 IBM Security Verify Access information disclosure CWE-319 7.5 High2024-02-07
CVE-2023-31006 IBM Security Access Manager Container denial of service CWE-400 6.5 Medium2024-02-03
CVE-2023-31004 IBM Security Access Manager Container gain access CWE-300 8.3 High2024-02-03
CVE-2023-32329 IBM Security Access Manager Container improper file validation CWE-345 6.2 Medium2024-02-03
CVE-2023-32327 IBM Security Access Manager Container XML external entity injection CWE-611 7.1 High2024-02-03
CVE-2023-43016 IBM Security Access Manager Container unauthorized access CWE-258 7.3 High2024-02-03
CVE-2023-30999 IBM Security Access Manager denial of service CWE-400 7.5 High2024-02-03
CVE-2023-31005 IBM Security Access Manager Container privilege escalation CWE-269 6.2 Medium2024-02-03
CVE-2023-38267 IBM Security Access Manager Appliance information disclosure CWE-311 6.2 Medium2024-01-11
CVE-2023-31001 IBM Security Access Manager Container information disclosure CWE-257 5.1 Medium2024-01-11
CVE-2023-31003 IBM Security Access Manager Container privilege escalation CWE-59 8.4 High2024-01-11

All 29 known CVE vulnerabilities affecting Security Verify Access Appliance with full Chinese analysis, references, and POCs where available.