PT-2024-13072 · Ibm · Ibm Security Verify Access Appliance+1
Published
2024-02-02
·
Updated
2024-02-07
·
CVE-2023-43016
CVSS v3.1
7.3
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
IBM Security Verify Access Appliance versions 10.0.0.0 through 10.0.6.1
IBM Security Verify Access Docker versions 10.0.0.0 through 10.0.6.1
Description
The issue allows a remote user to log into the server due to a user account with an empty password.
Recommendations
For IBM Security Verify Access Appliance versions 10.0.0.0 through 10.0.6.1, update the user account settings to ensure no empty passwords are used.
For IBM Security Verify Access Docker versions 10.0.0.0 through 10.0.6.1, update the user account settings to ensure no empty passwords are used.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ibm Security Verify Access Appliance
Ibm Security Verify Access Docker