CVE-2024-49804

Name of the Vulnerable Software and Affected Versions: IBM Security Verify Access Appliance versions 10.0.0 through 10.0.8

Description: The issue could allow a locally authenticated non-administrative user to escalate their privileges due to unnecessary permissions used to perform certain tasks.

Recommendations: For versions 10.0.0 through 10.0.8, consider restricting access to tasks that utilize unnecessary permissions until a patch is available. As a temporary workaround, review and adjust the permissions assigned to non-administrative users to minimize the risk of exploitation.