Weak Password Policy in IBM Security Verify Governance Affects User Account Security
CVE-2024-22330

5.9MEDIUM

Key Information:

Vendor: IBM
Status: Security Verify Governance
Vendor: CVE Published:; 6 June 2025

What is CVE-2024-22330?

IBM Security Verify Governance version 10.0.2 has a significant issue regarding its default password policy, as it does not enforce the use of strong passwords. This oversight enables attackers to exploit weak passwords, potentially leading to unauthorized access to user accounts. Organizations should be aware of this vulnerability and take immediate steps to enforce a robust password policy to protect their sensitive information and user accounts against unauthorized access.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Security Verify Governance 10.0.2

References

https://www.ibm.com/support/pages/node/7235779

vendor-advisorypatch

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 6, 2025
Vulnerability Reserved
Jan 8, 2024

JSON

IBM

What is CVE-2024-22330?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.