CVE-2024-49804
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Nov 29, 2024
CWE ID 250
Summary
CVE-2024-49804 is a vulnerability affecting IBM Security Verify Access Appliance versions 10.0.0 through 10.0.8. This issue grants locally authenticated non-administrative users unnecessarily elevated permissions, enabling them to escalate their privileges. The vulnerability could potentially be exploited to gain administrative control, posing a significant risk to affected systems. IBM strongly recommends applying the available patches or updates to mitigate this issue promptly.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- IBM Corporation