could allow a locally authenticated non-administrative user to escalate their privileges due to unnecessary permissions used to perform certain tasks.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| IBM | Security Verify Access | unaffected |
|
No data.
No data available yet.
No remediation available yet.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2024-43790 | IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a locally authenticated non-administrative user to escalate their privileges due to unnecessary permissions used to perform certain tasks. |
| Link | Providers |
|---|---|
| https://www.ibm.com/support/pages/node/7177447 |
|
Wed, 29 Jan 2025 21:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | NVD-CWE-Other | |
| CPEs | cpe:2.3:a:ibm:security_verify_access:*:*:*:*:*:*:*:* |
Fri, 29 Nov 2024 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Fri, 29 Nov 2024 17:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a locally authenticated non-administrative user to escalate their privileges due to unnecessary permissions used to perform certain tasks. | |
| Title | IBM Security Verify Access Appliance privilege escalation | |
| First Time appeared |
Ibm
Ibm security Verify Access |
|
| Weaknesses | CWE-250 | |
| CPEs | cpe:2.3:a:ibm:security_verify_access:10.0.0:*:*:*:*:*:*:* cpe:2.3:a:ibm:security_verify_access:10.0.8:*:*:*:*:*:*:* |
|
| Vendors & Products |
Ibm
Ibm security Verify Access |
|
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: ibm
Published:
Updated: 2024-11-29T17:09:49.542Z
Reserved: 2024-10-20T13:40:24.084Z
Link: CVE-2024-49804
Vulnrichment
Updated: 2024-11-29T17:03:20.656Z
NVD
Status : Analyzed
Published: 2024-11-29T17:15:08.330
Modified: 2025-01-29T21:24:00.387
Link: CVE-2024-49804
Redhat
No data.
OpenCVE Enrichment
No data.