Unrated severityNVD Advisory· Published Jan 20, 2025· Updated Jan 21, 2025

IBM Security Verify Access unverified password change

CVE-2024-45647

Description

IBM Security Verify Access 10.0.0 through 10.0.8 and IBM Security Verify Access Docker 10.0.0 through 10.0.8 could allow could an unverified user to change the password of an expired user without prior knowledge of that password.

Affected products

IBM/Security Verify Accessv5
cpe:2.3:a:ibm:security_verify_access:10.0.0:*:*:*:*:*:*:*
Range: 10.0.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.ibm.com/support/pages/node/7176212mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000