Information Disclosure Vulnerability in IBM Security Verify Identity Manager
CVE-2022-22460

3LOW

Key Information:

Vendor: IBM
Status: Security Verify Governance
Vendor: CVE Published:; 14 July 2022

Summary

IBM Security Verify Identity Manager version 10.0 has revealed sensitive information in its source code repository. This exposure can be exploited to compromise system security, potentially leading to unauthorized access or further attacks against the identity management systems. Organizations using this version should assess their security posture and take immediate action to mitigate potential risks.

Affected Version(s)

Security Verify Governance 10.0

References

https://www.ibm.com/support/pages/node/6603405

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/225013

vdb-entryx_refsource_XF

CVSS V3.1

Score:

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Jul 14, 2022
Vulnerability Reserved
Jan 3, 2022