IBM Verify Products Allow Local User to Run Malicious Scripts

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.5

IBM Verify Products Allow Local User to Run Malicious Scripts

CVE-2026-1342

Summary

Multiple IBM Verify products have a security issue that could allow a user with local access to execute unauthorized scripts. This could potentially allow an attacker to take control of the system. IBM recommends updating to the latest version to fix the issue.

Original title

Original description

IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 and IBM Verify Identity Access 11.0 through 11.0.2 and IBM Security Verify Access 10.0 through 10.0.9.1 could allow a locally authenticated user to execute malicious scripts from outside of its control sphere.

nvd CVSS3.1 8.5

Vulnerability type

CWE-829

https://www.ibm.com/support/pages/node/7268253

Published: 8 Apr 2026 · Updated: 8 Apr 2026 · First seen: 8 Apr 2026