PT-2026-60869 · Ibm · Ibm Security Verify Access+3

CVE-2026-8861

·

Published

2026-07-17

·

Updated

2026-07-17

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
IBM Security Verify could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.  This information could be used in further attacks against the system.

Fix

Generation of Error Message Containing Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-8861

Affected Products

Ibm Security Verify Access
Ibm Security Verify Access Container
Verify Identity Access
Ibm Verify Identity Access Container