CVE-2026-4101 - Vulnerability Analysis
HighCVSS: 8.1Last Updated: April 1, 2026
IBM Verify Identity Access & Security Verify Access - Authentication Bypass
Published: April 1, 2026Updated: April 1, 2026Remote Exploitable
Overview
IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 contain an authentication bypass caused by certain load conditions, letting attackers gain unauthorized access, exploit requires specific load conditions.
Severity & Score
Severity: High
CVSS Score: 8.1
Impact
Attackers can bypass authentication and gain unauthorized access to the application, compromising security.
Mitigation
Update to the latest available versions beyond 11.0.2 and 10.0.9.1.
Related Resources
Details
- CVE ID
- CVE-2026-4101
- Severity
- High
- CVSS Score
- 8.1
- Type
- broken_authentication
- Status
- new
CWE
- CWE-287
CVSS Metrics
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H