Vulnerability Database

308,926

Total vulnerabilities in the database

CVE-2024-45647

IBM Security Verify Access 10.0.0 through 10.0.8 and IBM Security Verify Access Docker 10.0.0 through 10.0.8 could allow could an unverified user to change the password of an expired user without prior knowledge of that password.

Published: Jan 20, 2025
Updated: Nov 16, 2025
CVE: CVE-2024-45647
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.6
AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CWEs:

CWE-620

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
ibm / security_verify_access_docker	10.0.0	10.0.8.x
ibm / security_verify_access	10.0.0	10.0.8.x

https://www.ibm.com/support/pages/node/7176212

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo