CVE-2024-45647

IBM Security Verify Access unverified password change

Description

IBM Security Verify Access 10.0.0 through 10.0.8 and IBM Security Verify Access Docker 10.0.0 through 10.0.8 could allow could an unverified user to change the password of an expired user without prior knowledge of that password.

INFO

Published Date :

2025-01-20T14:50:54.184Z

Last Modified :

2025-01-21T20:08:31.459Z

Source :

ibm

AFFECTED PRODUCTS

The following products are affected by CVE-2024-45647 vulnerability.

Vendors	Products
Ibm	Security Verify Access Security Verify Access Docker

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-45647.

URL	Resource
https://www.ibm.com/support/pages/node/7176212

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact