Privilege Escalation Vulnerability in IBM Verify Identity Access and Security Products
CVE-2026-1346

9.3CRITICAL

What is CVE-2026-1346?

A vulnerability exists in IBM Verify Identity Access and IBM Security Verify Access that allows a locally authenticated user to escalate their privileges to root. This issue arises from execution with unnecessary privileges, enabling attackers to potentially gain elevated access and manipulate system resources. It is critical for users to apply available patches and update their systems to mitigate this risk.

Affected Version(s)

Security Verify Access 10.0 <= 10.0.9.1

Security Verify Access Container 10.0 <= 10.0.9.1

Verify Identity Access 11.0 <= 11.0.2

References

CVSS V3.1

Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.