Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Security Verify Access could allow a user, using man in the middle techniques, to obtain sensitive information or possibly change some information due to improper validiation of JWT tokens.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Security Verify Access 输入验证错误漏洞
Vulnerability Description
IBM Security Verify Access(ISAM)是美国IBM公司的一款提高用户访问安全的服务。该服务通过使用基于风险的访问、单点登录、集成访问管理控制、身份联合以及移动多因子认证实现对Web、移动、IoT 和云技术等平台安全简单的访问 IBM Security Verify Access 存在安全漏洞,该漏洞源于允许用户使用中间人技术获取敏感信息,或者由于 JWT 令牌验证不当而可能更改某些信息。以下产品和版本受到影响:10.0.0、10.0.1、10.0.2、10.0.3。
CVSS Information
N/A
Vulnerability Type
N/A