Details of VAR-202403-3007

VAR-202403-3007

CVE-2024-25027

IBM of Security Verify Access Vulnerability regarding lack of encryption of critical data in

Trust: 0.8

sources: JVNDB: JVNDB-2024-003065

IBM Security Verify Access 10.0.6 could disclose sensitive snapshot information due to missing encryption. IBM X-Force ID: 281607

Trust: 1.62

sources: NVD: CVE-2024-25027 // JVNDB: JVNDB-2024-003065

vendor:	ibm	model:	security verify access	scope:	eq	version:	10.0.6	Trust: 1.8
vendor:	ibm	model:	security verify access	scope:	eq	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2024-003065 // NVD: CVE-2024-25027

sources: JVNDB: JVNDB-2024-003065 // NVD: CVE-2024-25027 // NVD: CVE-2024-25027

problemtype:	CWE-311	Trust: 1.0
problemtype:	Lack of encryption of critical data (CWE-311) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2024-003065 // NVD: CVE-2024-25027

sources: NVD: CVE-2024-25027

title:

7145400 IBM X-Force Exchange

url:

https://www.ibm.com/support/pages/node/7145400

Trust: 0.8

sources: JVNDB: JVNDB-2024-003065

db:	NVD	id:	CVE-2024-25027	Trust: 2.6
db:	JVNDB	id:	JVNDB-2024-003065	Trust: 0.8

sources: JVNDB: JVNDB-2024-003065 // NVD: CVE-2024-25027

url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/281607	Trust: 1.0
url:	https://www.ibm.com/support/pages/node/7145400	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2024-25027	Trust: 0.8

sources: JVNDB: JVNDB-2024-003065 // NVD: CVE-2024-25027

db:	JVNDB	id:	JVNDB-2024-003065
db:	NVD	id:	CVE-2024-25027

2024-04-18T13:29:42.346000+00:00

db:	JVNDB	id:	JVNDB-2024-003065	date:	2024-04-04T00:38:00
db:	NVD	id:	CVE-2024-25027	date:	2024-04-02T17:57:34.440

db:	JVNDB	id:	JVNDB-2024-003065	date:	2024-04-04T00:00:00
db:	NVD	id:	CVE-2024-25027	date:	2024-03-31T12:15:50.637