IBM Security Verify Access hard coded credentials_CVE-2025-36087

8.1 / 10

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

IBM Security Verify Access 10.0.0 through 10.0.9, 11.0.0, IBM Verify Identity Access Container 10.0.0 through 10.0.9, and 11.0.0, under certain configurations, contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.

Basic Information

ID CVE-2025-36087

Source ibm

Published Oct 13, 2025 at 00:38

Affected Product

Vendor IBM

Product Security Verify Access

Version 10.0.0

Affected Versions IBM Security Verify Access 10.0.0
IBM Security Verify Access 11.0.0
IBM Verify Identity Access Container 10.0.0
IBM Verify Identity Access Container 11.0.0

CWE Classification

CWE-798

References

www.ibm.com /support/pages/node/7247753

{
    "lastseen": "",
    "description": "IBM Security Verify Access 10.0.0 through 10.0.9, 11.0.0, IBM Verify Identity Access Container 10.0.0 through 10.0.9, and 11.0.0, under certain configurations, contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.",
    "published": "2025-10-13T00:38:14.262Z",
    "modified": "2025-10-13T00:38:14.262Z",
    "type": "cve",
    "title": "IBM Security Verify Access hard coded credentials",
    "source": "ibm",
    "references": "https://www.ibm.com/support/pages/node/7247753",
    "id": "CVE-2025-36087",
    "bulletinFamily": "",
    "cwe": [
        "CWE-798"
    ],
    "cvelist": null,
    "sourceData": "IBM Security Verify Access 10.0.0\nIBM Security Verify Access 11.0.0\nIBM Verify Identity Access Container 10.0.0\nIBM Verify Identity Access Container 11.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.1,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Security Verify Access",
    "version": "10.0.0",
    "vendor": "IBM",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}