CVE-2025-36355
IBM Security Verify Access and IBM Security Verify Access Docker 10.0.0.0 through 10.0.9.0 and 11.0.0.0 through 11.0.1.0
could allow a locally authenticated user to execute malicious scripts from outside of its control sphere.
| Software | From | Fixed in |
|---|---|---|
| ibm / security_verify_access | 10.0.0.0 | 10.0.9.0 |
| ibm / security_verify_access | 10.0.9.0 | 10.0.9.0.x |
| ibm / security_verify_access | 10.0.9.0-interim_fix1 | 10.0.9.0-interim_fix1.x |
| ibm / security_verify_access | 10.0.9.0-interim_fix2 | 10.0.9.0-interim_fix2.x |
| ibm / security_verify_access_docker | 10.0.0.0 | 10.0.9.0 |
| ibm / security_verify_access_docker | 10.0.9.0 | 10.0.9.0.x |
| ibm / security_verify_access_docker | 10.0.9.0-interim_fix1 | 10.0.9.0-interim_fix1.x |
| ibm / security_verify_access_docker | 10.0.9.0-interim_fix2 | 10.0.9.0-interim_fix2.x |
| ibm / verify_identity_access | 11.0.0.0 | 11.0.1.0 |
| ibm / verify_identity_access | 11.0.1.0 | 11.0.1.0.x |
| ibm / verify_identity_access_docker | 11.0.0.0 | 11.0.1.0 |
| ibm / verify_identity_access_docker | 11.0.1.0 | 11.0.1.0.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime