CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45674 – IBM Security Verify Bridge information disclosure
https://notcve.org/view.php?id=CVE-2024-45674
21 Feb 2025 — IBM Security Verify Bridge Directory Sync 1.0.1 through 1.0.12, IBM Security Verify Gateway for Windows Login 1.0.1 through 1.0.10, and IBM Security Verify Gateway for Radius 1.0.1 through 1.0.11 stores potentially sensitive information in log files that could be read by a local user. • https://www.ibm.com/support/pages/node/7183801 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45673 – IBM Security Verify Bridge information disclosure
https://notcve.org/view.php?id=CVE-2024-45673
21 Feb 2025 — IBM Security Verify Bridge Directory Sync 1.0.1 through 1.0.12, IBM Security Verify Gateway for Windows Login 1.0.1 through 1.0.10, and IBM Security Verify Gateway for Radius 1.0.1 through 1.0.11 stores user credentials in configuration files which can be read by a local user. • https://www.ibm.com/support/pages/node/7183801 • CWE-260: Password in Configuration File •
CVSS: 6.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45672 – IBM Security Verify Bridge data manipulation
https://notcve.org/view.php?id=CVE-2024-45672
23 Jan 2025 — IBM Security Verify Bridge 1.0.0 through 1.0.15 could allow a local privileged user to overwrite files due to excessive privileges granted to the agent. which could also cause a denial of service. • https://www.ibm.com/support/pages/node/7181370 • CWE-471: Modification of Assumed-Immutable Data (MAID) •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-38864
https://notcve.org/view.php?id=CVE-2021-38864
23 Sep 2021 — IBM Security Verify Bridge 1.0.5.0 could allow a user to obtain sensitive information due to improper certificate validation. IBM X-Force ID: 208155. IBM Security Verify Bridge versión 1.0.5.0, podría permitir a un usuario conseguir información confidencial debido a una comprobación inapropiada del certificado. ID de IBM X-Force: 208155 • https://exchange.xforce.ibmcloud.com/vulnerabilities/208155 • CWE-295: Improper Certificate Validation •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-20435
https://notcve.org/view.php?id=CVE-2021-20435
23 Sep 2021 — IBM Security Verify Bridge 1.0.5.0 does not properly validate a certificate which could allow a local attacker to obtain sensitive information that could aid in further attacks against the system. IBM X-Force ID: 196355. IBM Security Verify Bridge versión 1.0.5.0, no comprueba apropiadamente un certificado, que podría permitir a un atacante local conseguir información confidencial que podría ayudar en otros ataques contra el sistema. IBM X-Force ID: 196355 • https://exchange.xforce.ibmcloud.com/vulnerabilities/196355 • CWE-295: Improper Certificate Validation •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2021-20434
https://notcve.org/view.php?id=CVE-2021-20434
23 Sep 2021 — IBM Security Verify Bridge 1.0.5.0 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 196346. IBM Security Verify Bridge versión 1.0.5.0, almacena las credenciales de usuario en texto plano sin cifrar que puede ser leído por un usuario local. IBM X-Force ID: 196346 • https://exchange.xforce.ibmcloud.com/vulnerabilities/196346 • CWE-522: Insufficiently Protected Credentials •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-38863
https://notcve.org/view.php?id=CVE-2021-38863
23 Sep 2021 — IBM Security Verify Bridge 1.0.5.0 stores user credentials in plain clear text which can be read by a locally authenticated user. IBM X-Force ID: 208154. IBM Security Verify Bridge versión 1.0.5.0, almacena las credenciales de usuario en texto plano sin cifrar que puede ser leído por un usuario autenticado localmente. IBM X-Force ID: 208154 • https://exchange.xforce.ibmcloud.com/vulnerabilities/208154 • CWE-522: Insufficiently Protected Credentials •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-20442
https://notcve.org/view.php?id=CVE-2021-20442
03 Mar 2021 — IBM Security Verify Bridge contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 196618. IBM Security Verify Bridge contiene credenciales embebidas, como una contraseña o clave criptográfica, que usa para su propia autenticación de la entrada, comunicación saliente hacia componentes externos o cifrado de datos internos. IBM X-Force ID: 196... • https://exchange.xforce.ibmcloud.com/vulnerabilities/196618 • CWE-798: Use of Hard-coded Credentials •
CVSS: 5.9EPSS: 0%CPEs: 2EXPL: 0CVE-2021-20441
https://notcve.org/view.php?id=CVE-2021-20441
03 Mar 2021 — IBM Security Verify Bridge uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196617. IBM Security Verify Bridge usa algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. IBM X-Force ID: 196617 • https://exchange.xforce.ibmcloud.com/vulnerabilities/196617 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •