PT-2025-25494 · Ibm · Ibm Security Verify Directory Container
Published
2025-06-13
·
Updated
2025-08-11
·
CVE-2025-1411
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IBM Security Verify Directory Container versions 10.0.0.0 through 10.0.3.1
Description
The issue allows a local user to execute commands as root due to execution with unnecessary privileges. This is related to the execution of commands with higher privileges than necessary, which can be exploited by a local user.
Recommendations
For versions 10.0.0.0 through 10.0.3.1, consider restricting the execution of commands with root privileges until a patch is available. As a temporary workaround, review and adjust the privileges assigned to the IBM Security Verify Directory Container to minimize the risk of exploitation.
Fix
LPE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Security Verify Directory Container