Subnostr

IBM Security Verify Access has a flaw that allows attackers to launch phishing attacks. #cybersecurity #vulnerability

The flaw is an open-redirect vulnerability that allows attackers to spoof the original URL of IBM Security Verify Access.

Attackers can use this vulnerability to lure victims into a malicious website and steal sensitive information.

The vulnerability is present due to the default configuration of the Advanced Access Control module.

IBM has already released a patch to fix this vulnerability.

Affected products include IBM Security Verify Access Appliance and Docker.

To fix the vulnerability, users must modify the sps.targetURLWhitelist property with a list of whitelisting URLs.

Stay informed about the latest cybersecurity news on GoogleNews, Linkedin, Twitter, and Facebook.