cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-45674,https://securityvulnerability.io/vulnerability/CVE-2024-45674,Information Disclosure Vulnerability in IBM Security Verify Products,"The vulnerability in IBM Security Verify products arises from the improper handling of log files, where potentially sensitive information is stored. This exposure allows local users to access and read sensitive data, which may include user credentials or personal identifiable information, posing a security risk for organizations reliant on these systems. It is essential to implement mitigations and monitor access to logs to protect sensitive information from unauthorized access.",IBM,Security Verify Bridge Directory Sync,3.3,LOW,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-22T00:15:00.000Z,0
CVE-2024-45673,https://securityvulnerability.io/vulnerability/CVE-2024-45673,Credential Storage Vulnerability in IBM Security Verify Products,"IBM Security Verify products, including the Bridge Directory Sync and Gateways for Windows Login and Radius, contain a vulnerability where user credentials are stored in configuration files. This design flaw allows local users to access sensitive credential information, potentially leading to unauthorized access and data breaches. Security best practices suggest that sensitive data should not be stored in easily accessible formats, and remediation steps are recommended to protect user information.",IBM,Security Verify Bridge Directory Sync,5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-21T16:45:51.122Z,0