IBM Security Verify could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.
Metrics
Affected Vendors & Products
References
| Link | Providers |
|---|---|
| https://www.ibm.com/support/pages/node/7279510 |
|
History
Fri, 17 Jul 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | IBM Security Verify could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. | |
| Title | Security vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access | |
| First Time appeared |
Ibm
Ibm security Verify Access Ibm security Verify Access Container Ibm verify Identity Access Ibm verify Identity Access Container |
|
| Weaknesses | CWE-209 | |
| CPEs | cpe:2.3:a:ibm:security_verify_access:10.0.0:*:*:*:*:*:*:* cpe:2.3:a:ibm:security_verify_access:10.0.9.1:*:*:*:*:*:*:* cpe:2.3:a:ibm:security_verify_access:10.0:*:*:*:*:*:*:* cpe:2.3:a:ibm:security_verify_access_container:10.0.0:*:*:*:*:*:*:* cpe:2.3:a:ibm:security_verify_access_container:10.0.9.1:*:*:*:*:*:*:* cpe:2.3:a:ibm:security_verify_access_container:10.0:*:*:*:*:*:*:* cpe:2.3:a:ibm:verify_identity_access:11.0.0:*:*:*:*:*:*:* cpe:2.3:a:ibm:verify_identity_access:11.0.2:*:*:*:*:*:*:* cpe:2.3:a:ibm:verify_identity_access:11.0:*:*:*:*:*:*:* cpe:2.3:a:ibm:verify_identity_access_container:11.0.0:*:*:*:*:*:*:* cpe:2.3:a:ibm:verify_identity_access_container:11.0.2:*:*:*:*:*:*:* cpe:2.3:a:ibm:verify_identity_access_container:11.0:*:*:*:*:*:*:* |
|
| Vendors & Products |
Ibm
Ibm security Verify Access Ibm security Verify Access Container Ibm verify Identity Access Ibm verify Identity Access Container |
|
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: ibm
Published:
Updated: 2026-07-17T18:54:36.296Z
Reserved: 2026-05-18T18:50:49.014Z
Link: CVE-2026-8861
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-17T21:15:05Z