CVE-2024-45647

CVSS 3.1 Score 5.6 of 10 (medium)

Details

Published Jan 20, 2025

CWE ID 620

Summary

CVE-2024-45647 is a vulnerability affecting IBM Security Verify Access versions 10.0.0 through 10.0.8 and the IBM Security Verify Access Docker image versions 10.0.0 through 10.0.8. This issue permits an unverified user to alter the password of an expired account without prior knowledge of the original password. This poses a significant risk, as the new password could be used to gain unauthorized access to the system or sensitive data. IBM urges users to update their software to address this vulnerability promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/yTwVIa
https://www.cve.org/CVERecord?id=CVE-2024-45647
https://nvd.nist.gov/vuln/detail/CVE-2024-45647

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2024-45647

CVSS 3.1 Score 5.6 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations