IBM Security Verify Access Vulnerability Could Lead to Phishing Attacks
CVE-2024-35133

8.2HIGH

Key Information:

Vendor: IBM
Status: Security Verify Access; Security Verify Access Docker
Vendor: CVE Published:; 29 August 2024

Badges

👾 Exploit Exists🟡 Public PoC

Summary

IBM Security Verify Access versions 10.0.0 through 10.0.8 present an open redirect vulnerability in the OIDC Provider, which can be exploited by remote authenticated attackers to perform phishing attacks. By convincing users to navigate to a specially designed link, attackers can manipulate the displayed URL, redirecting users to malicious sites disguised as legitimate ones. This exploitation can lead to the theft of sensitive information or enable further compromise of the victim's security.

Affected Version(s)

Security Verify Access 10.0.0 <= 10.0.8

Security Verify Access Docker 10.0.0 <= 10.0.8

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

Ozozuz-IBM-Security-Verify-CVE-2024-35133
Created by Ozozuz

References

https://www.ibm.com/support/pages/node/7166712

vendor-advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/291026

vdb-entry

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

🟡
Public PoC available
Oct 18, 2024
👾
Exploit known to exist
Oct 18, 2024
Vulnerability published
Aug 29, 2024
Vulnerability Reserved
May 9, 2024