PT-2025-23998 · Ibm · Ibm Verify Identity Access Digital Credentials
Published
2025-06-04
·
Updated
2025-08-20
·
CVE-2024-56343
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
IBM Verify Identity Access Digital Credentials version 24.06
Description
The issue allows an authenticated user to crash the service by sending a specially crafted POST request. This could potentially lead to a denial-of-service condition.
Recommendations
For IBM Verify Identity Access Digital Credentials version 24.06, consider restricting access to the service until a fix is available to prevent potential denial-of-service attacks. As a temporary workaround, monitor the service for suspicious POST requests and implement measures to prevent specially crafted requests from being processed.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Verify Identity Access Digital Credentials