Critical Vulnerabilities Discovered in IBM Security Verify Access Appliance
Security researchers have disclosed multiple critical vulnerabilities affecting IBM Security Verify Access Appliance, a widely deployed solution for web application access management and authentication.
IBM has issued a security bulletin detailing these vulnerabilities, which range from remote code execution to hard-coded credentials and privilege escalation. The most severe vulnerability (CVE-2024-49803) enables remote attackers to execute arbitrary commands on affected systems, potentially compromising sensitive data and disrupting critical services. This vulnerability has been assigned a CVSS base score of 9.8, underscoring its high severity and the urgent need for remediation.
Vulnerability Breakdown
The identified vulnerabilities include:
- CVE-2024-49803: Remote Code Execution (CVSS 9.8) – A flaw allowing authenticated remote attackers to execute arbitrary commands.
- CVE-2024-49805 & CVE-2024-49806: Hard-Coded Credentials (CVSS 9.4) – The appliance contains hard-coded credentials that could be exploited to gain unauthorized access.
- CVE-2024-49804: Privilege Escalation (CVSS 7.8) – A locally authenticated attacker could exploit this vulnerability to gain elevated privileges.
Affected Versions and Remediation
IBM Security Verify Access versions 10.0.0 through 10.0.8 IF1 are vulnerable. IBM has released fix pack 10.0.8-ISS-ISVA-FP0002 to address these vulnerabilities. Organizations utilizing the affected versions are strongly advised to apply the fix pack without delay.
Mitigations
At present, no workarounds or mitigating measures are available. Timely implementation of the provided fix pack is crucial for ensuring the security of affected systems.
