CVE-2024-31871

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Apr 10, 2024

CWE ID 295

Summary

CVE-2024-31871 is a vulnerability affecting IBM Security Verify Access Appliance versions 10.0.0 through 10.0.7. This issue allows a malicious actor to perform a man-in-the-middle attack during the deployment of Python scripts. The vulnerability arises due to inadequate certificate validation. IBM X-Force has assigned ID 287306 to this security concern. Organizations using these versions are advised to apply the necessary patches or upgrades to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vTu-TH
https://www.cve.org/CVERecord?id=CVE-2024-31871
https://nvd.nist.gov/vuln/detail/CVE-2024-31871

Back to Vulnerability Database

CVE-2024-31871

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations