Low severity3.1NVD Advisory· Published Apr 1, 2026· Updated Apr 7, 2026
CVE-2026-2475
CVE-2026-2475
Description
IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 and IBM Verify Identity Access 11.0 through 11.0.2 and IBM Security Verify Access 10.0 through 10.0.9.1 could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability. An attacker could exploit this vulnerability using a specially crafted request to redirect a victim to arbitrary Web sites.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:ibm:security_verify_access:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:security_verify_access:*:*:*:*:*:*:*:*range: >=10.0.0.0,<=10.0.9.1
- cpe:2.3:a:ibm:security_verify_access_container:*:*:*:*:*:*:*:*range: >=10.0.0.0,<=10.0.9.1
- (no CPE)range: <=10.0.9.1
- (no CPE)range: <=10.0.9.1
cpe:2.3:a:ibm:verify_identity_access:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:verify_identity_access:*:*:*:*:*:*:*:*range: >=11.0.0.0,<=11.0.2.0
- cpe:2.3:a:ibm:verify_identity_access_container:*:*:*:*:*:*:*:*range: >=11.0.0.0,<=11.0.2.0
- (no CPE)range: <=11.0.2
- (no CPE)range: <=11.0.2
Patches
Vulnerability mechanics
References
1- www.ibm.com/support/pages/node/7268253nvdVendor Advisory
News mentions
0No linked articles in our index yet.