Weak Cryptographic Algorithms in IBM Security Verify Could Expose Sensitive Data
CVE-2024-45671

5.9MEDIUM

Key Information:

Vendor: IBM
Status: Security Verify Information Queue
Vendor: CVE Published:; 10 September 2025

What is CVE-2024-45671?

Certain versions of IBM Security Verify (10.0.5 to 10.0.8) rely on cryptographic algorithms deemed weaker than necessary. This vulnerability could enable attackers to decrypt sensitive data, potentially compromising confidentiality and integrity. Organizations using affected versions are advised to review their cryptographic configurations and apply patches to mitigate risks.

Affected Version(s)

Security Verify Information Queue 10.0.5

Security Verify Information Queue 10.0.6

Security Verify Information Queue 10.0.7

References

https://www.ibm.com/support/pages/node/7244514

vendor-advisorypatch

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 10, 2025
Vulnerability Reserved
Sep 3, 2024