Vulnerabilities > IBM > Security Verify Directory > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-03-22 CVE-2022-32751 Unspecified vulnerability in IBM Security Verify Directory 10.0.0
IBM Security Verify Directory 10.0.0 could disclose sensitive server information that could be used in further attacks against the system.
network
low complexity
ibm
5.3
2024-03-22 CVE-2022-32753 Inadequate Encryption Strength vulnerability in IBM Security Verify Directory 10.0.0
IBM Security Verify Directory 10.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
low complexity
ibm CWE-326
6.5
2024-03-22 CVE-2022-32754 Cross-site Scripting vulnerability in IBM Security Verify Directory 10.0.0
IBM Security Verify Directory 10.0.0 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
4.8
2023-10-14 CVE-2022-33161 Missing Encryption of Sensitive Data vulnerability in IBM products
IBM Security Directory Server 6.4.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security.
network
high complexity
ibm CWE-311
5.9