CVE-2023-32328

HIGH

IBM Security Verify Access < 10.0.6.1 - Cleartext Transmission

Title source: rule
STIX 2.1

Description

IBM Security Verify Access 10.0.0.0 through 10.0.6.1 uses insecure protocols in some instances that could allow an attacker on the network to take control of the server. IBM X-Force Id: 254957.

References (3)

Scores

CVSS v3 7.5
EPSS 0.0004
EPSS Percentile 10.9%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-319
Status published
Products (1)
ibm/security_verify_access 10.0.0.0 - 10.0.6.1
Published Feb 07, 2024
Tracked Since Feb 18, 2026