IBM Verify

View Only

About Security Vulnerabilities of IBM Security Verify Access

Ken Iida posted Thu October 09, 2025 10:24 PM

Security Bulletin: Several Security Vulnerabilities have been discovered in IBM Security Verify Access and IBM Verify Identity Access products. (CVE-2025-36354, CVE-2025-36355, CVE-2025-363546)

Regarding the vulnerability in the article linked above, does this mean that after logging in to the ISVA console, it is possible to perform operations beyond the given permissions?

Would suspending any non-administrator accounts that can log in to the ISVA console be a workaround?

Additional
Resources

Discover these carefully selected resources to dive deeper into your journey and unlock fresh insights

Office

If you need immediate assistance please contact the Community Management team

support@communitysite.ibm.com

Monday - Friday: 8AM - 5 PM MT

Powered by Higher Logic

IBM Verify

About Security Vulnerabilities of IBM Security Verify Access

Related Content

IBM Verify Technical Touchpoint August 2025

IBM Security Identity Governance & Intelligence Trial

ISVA - Application Security PenTest vulnerability

WEBINAR June 26th Securing Non-Human Identities with Identity Observability

IBM Verify Technical Touchpoint September 2025

Additional Resources

Office

Quick Links

Additional
Resources