CVE-2024-31872

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Apr 10, 2024
CWE ID 599

Summary

CVE-2024-31872 is a vulnerability affecting IBM Security Verify Access Appliance versions 10.0.0 through 10.0.7. An attacker can exploit this issue by conducting a man-in-the-middle attack during the deployment of Open Source scripts. The vulnerability arises due to missing certificate validation, allowing a malicious actor to intercept and alter data transmissions. IBM's X-Force has assigned ID 287316 to this security concern. Organizations using the impacted appliance versions are advised to apply patches or updates to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share