IBM disclosed multiple critical vulnerabilities affecting its Security Verify Access Appliance, potentially exposing users to severe security risks.
The vulnerabilities are identified as:-
- CVE-2024-49803
- CVE-2024-49804
- CVE-2024-49805
- CVE-2024-49806
All these vulnerabilities impact the versions 10.0.0 through 10.0.8 IF1 of the appliance.
The most severe vulnerability, CVE-2024-49803, received a CVSS base score of 9.8, indicating critical severity.
Cybersecurity researchers at IBM observed that this flaw could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request.
Leveraging 2024 MITRE ATT&CK Results for SME & MSP Cybersecurity Leaders – Attend Free Webinar
Technical Analysis
The vulnerability stems from improper neutralization of special elements used in OS commands, potentially leading to OS command injection attacks.
Two other critical vulnerabilities, CVE-2024-49805 and CVE-2024-49806, both scored 9.4 on the CVSS scale, involve the use of hard-coded credentials.
These credentials, which could be passwords or cryptographic keys, are used for inbound authentication, outbound communication to external components, or encryption of internal data.
The presence of hard-coded credentials significantly increases the risk of unauthorized access and data breaches.
The fourth vulnerability, CVE-2024-49804, with a CVSS score of 7.8, could allow a locally authenticated non-administrative user to escalate their privileges due to unnecessary permissions used for certain tasks.
This vulnerability, while less severe than the others, still poses a significant risk to system integrity. IBM has released a fix for these vulnerabilities in the form of a patch, version 10.0.8-ISS-ISVA-FP0002.
Users of affected IBM Security Verify Access Appliance versions are strongly advised to apply this patch as soon as possible to mitigate the risks associated with these vulnerabilities.
As of now, there are no known workarounds or mitigations for these vulnerabilities other than applying the provided patch.
So, the users are encouraged to stay vigilant and alert regarding these security issues to avoid any exploitation.
Analyse Advanced Malware & Phishing Analysis With ANY.RUN Black Friday Deals : Get up to 3 Free Licenses.