Rewterz Threat Advisory – CVE-2022-43876 – IBM Security Verify Access OIDC Provider Vulnerability - Rewterz

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

January 9, 2024

Rewterz Threat Alert – Cobalt Strike Malware – Active IOCs

January 9, 2024

Rewterz Threat Advisory – CVE-2022-43876 – IBM Security Verify Access OIDC Provider Vulnerability

Severity

Medium

Analysis Summary

CVE-2022-43876

IBM Security Verify Access OIDC Provider 22.09 through 23.03 allows web pages to be stored locally which can be read by another user on the system.

Impact

Information Disclosure

Indicators Of Compromise

CVE

CVE-2022-43876

Affected Vendors

IBM

Affected Products

IBM Security Verify Access OIDC Provider 22.09
IBM Security Verify Access OIDC Provider 23.03

Remediation

Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.

IBM Security Advisory