CVE-2024-22338 – IBM Security Verify Access OIDC Provider information disclosure
https://notcve.org/view.php?id=CVE-2024-22338
IBM Security Verify Access OIDC Provider 22.09 through 23.03 could disclose sensitive information to a local user due to hazardous input validation. IBM X-Force ID: 279978. IBM Security Verify Access OIDC Provider 22.09 a 23.03 podría revelar información confidencial a un usuario local debido a una validación de entrada peligrosa. ID de IBM X-Force: 279978. • https://exchange.xforce.ibmcloud.com/vulnerabilities/279978 https://www.ibm.com/support/pages/node/7155340 • CWE-20: Improper Input Validation •
CVE-2022-43868 – IBM Security Verify Access information disclosure
https://notcve.org/view.php?id=CVE-2022-43868
IBM Security Verify Access OIDC Provider could disclose directory information that could aid attackers in further attacks against the system. IBM X-Force ID: 239445. IBM Security Verify Access OIDC Provider podría revelar información de directorio que podría ayudar a los atacantes en futuros ataques contra el sistema. ID de IBM X-Force: 239445. • https://exchange.xforce.ibmcloud.com/vulnerabilities/239445 https://www.ibm.com/support/pages/node/7028513 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2022-43740 – IBM Security Verify Access denial of service
https://notcve.org/view.php?id=CVE-2022-43740
IBM Security Verify Access OIDC Provider could allow a remote user to cause a denial of service due to uncontrolled resource consumption. IBM X-Force ID: 238921. El proveedor OIDC de IBM Security Verify Access podría permitir que un usuario remoto provoque una Denegación de Servicio (DoS) debido al consumo incontrolado de recursos. ID de IBM X-Force: 238921. • https://exchange.xforce.ibmcloud.com/vulnerabilities/238921 https://www.ibm.com/support/pages/node/7028513 • CWE-400: Uncontrolled Resource Consumption •