English
EN
Français
FR
Language
English
EN
Français
FR

CVE Vulnerabilities

Posts & Pages

No results found for ""

Try different keywords or check spelling

Search in CVE database, posts & pages • Press ESC to close

DNA View

High Severity Vulnerability

This vulnerability has been rated as High severity. Immediate action is recommended.

CVE-2026-4101

High
Low Medium High Critical
8.1
CVSS Score
Published: Apr 01, 2026
Last Modified: Apr 07, 2026
CWE: CWE-287

Vulnerability Description

IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 and IBM Verify Identity Access 11.0 through 11.0.2 and IBM Security Verify Access 10.0 through 10.0.9.1 under certain load conditions could allow an attacker to bypass authentication mechanisms and gain unauthorized access to the application.

CVSS Metrics

Common Vulnerability Scoring System

Vector String:

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
N
Attack Complexity
H
Privileges Required
N
User Interaction
N
Scope
U
Confidentiality
H
Integrity
H
Availability
H

Known Affected Software

21 configuration(s) from 1 vendor(s)

security_verify_access
Version:
10.0.1
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.1:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.1.0
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.1.0:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.6
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.6:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.0.6
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.0.6:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.2
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.2:*:*:*:*:*:*:*
verify_identity_access
Version:
11.0.1.0
CPE:
cpe:2.3:a:ibm:verify_identity_access:11.0.1.0:-:*:*:*:*:*:*
security_verify_access
Version:
10.0.7.1
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.7.1:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.5
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.5:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.0.1
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.0.1:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.0
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.0:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.7
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.7:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.4
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.4:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.4.0
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.4.0:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.3
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.3:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.0.7
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.0.7:*:*:*:*:*:*:*
verify_identity_access
Version:
11.0.0
CPE:
cpe:2.3:a:ibm:verify_identity_access:11.0.0:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.8
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.8:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.3.0
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.3.0:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.0.0
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.0.0:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.2.0
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.2.0:*:*:*:*:*:*:*
security_verify_access
Version:
10.0.9.0
CPE:
cpe:2.3:a:ibm:security_verify_access:10.0.9.0:-:*:*:*:*:*:*
This vulnerability affects 21 software configuration(s). Ensure you patch all affected systems.

References & Resources

Severity Details

8.1
out of 10.0
High

Weakness Type (CWE)

CWE-287 Top 25 #10

Improper Authentication

Description
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Exploit Likelihood
High
Typical Severity
High
OWASP Top 10
A07:2021-Identification/Auth Failures
Abstraction Level
Class
View CWE Details on MITRE

Key Information

Published Date
April 01, 2026

External Resources

NIST
NIST NVD
National Vulnerability Database
MT
MITRE CVE
Official CVE record