CVE-2024-45674

Summary

IBM Security Verify Bridge Directory Sync 1.0.1 through 1.0.12, IBM Security Verify Gateway for Windows Login 1.0.1 through 1.0.10, and IBM Security Verify Gateway for Radius 1.0.1 through 1.0.11

stores potentially sensitive information in log files that could be read by a local user.

Affected Software

VendorProductVersion RangeStatus
IBMSecurity Verify Bridge Directory Sync1.0.1 <= 1.0.12affected

Weaknesses

  • CWE-532: CWE-532 Insertion of Sensitive Information into Log File

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References