CVE-2023-32328 – IBM Security Verify Access versions 10.0.0.0 th... (How to Fix)

Q: What is the severity of CVE-2023-32328?

CVE-2023-32328 has a CVSS score of 7.5 (HIGH). IBM Security Verify Access versions 10.0.0.0 through 10.0.6.1 use insecure protocols in some instances, allowing attackers on the same network to potentially take control of the server. This affects organizations running vulnerable versions of IBM Security Verify Access.

📋 TL;DR

IBM Security Verify Access versions 10.0.0.0 through 10.0.6.1 use insecure protocols in some instances, allowing attackers on the same network to potentially take control of the server. This affects organizations running vulnerable versions of IBM Security Verify Access.

💻 Affected Systems

Products:

IBM Security Verify Access

Versions: 10.0.0.0 through 10.0.6.1

Operating Systems: All supported platforms

Default Config Vulnerable: ⚠️ Yes

Notes: Affects instances where insecure protocols are enabled in configuration.

📦 What is this software?

Security Verify Access by Ibm

View all CVEs affecting Security Verify Access →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full server compromise leading to data theft, lateral movement, and complete system control.

🟠

Likely Case

Unauthorized access to sensitive authentication data and potential privilege escalation.

🟢

If Mitigated

Limited impact with proper network segmentation and protocol restrictions.

🌐 Internet-Facing: MEDIUM - Risk exists if vulnerable services are exposed, but exploitation requires network access.

🏢 Internal Only: HIGH - Attackers on internal networks can exploit this to compromise critical authentication infrastructure.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires network access but no authentication. Specific exploit details not publicly available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 10.0.6.2 and later

Vendor Advisory: https://www.ibm.com/support/pages/node/7106586

Restart Required: Yes

Instructions:

1. Download IBM Security Verify Access 10.0.6.2 or later from IBM Fix Central. 2. Apply the update following IBM's installation guide. 3. Restart all affected services.

🔧 Temporary Workarounds

Disable Insecure Protocols

all

Configure IBM Security Verify Access to use only secure protocols (TLS 1.2+) and disable legacy insecure protocols.

Refer to IBM documentation for specific configuration changes to disable insecure protocols.

Network Segmentation

all

Restrict network access to IBM Security Verify Access servers to only trusted networks and required services.

Implement firewall rules to limit inbound connections to specific IP ranges and ports.

🧯 If You Can't Patch

Implement strict network segmentation to isolate IBM Security Verify Access servers from untrusted networks.
Enable detailed logging and monitoring for unauthorized access attempts to affected systems.

🔍 How to Verify

Check if Vulnerable:

Check IBM Security Verify Access version via administrative console or command line. If version is between 10.0.0.0 and 10.0.6.1 inclusive, system is vulnerable.

Check Version:

On Linux: /opt/ibm/isva/bin/versioninfo.sh or check via IBM Security Verify Access web admin console.

Verify Fix Applied:

Verify version is 10.0.6.2 or later and confirm insecure protocols are disabled in configuration.

📡 Detection & Monitoring

Log Indicators:

Unauthorized connection attempts to IBM Security Verify Access services
Protocol downgrade attempts
Unexpected authentication failures

Network Indicators:

Traffic using insecure protocols (e.g., SSLv3, TLS 1.0) to IBM Security Verify Access ports
Unusual network connections from internal hosts

SIEM Query:

source="ibm_security_verify_access" AND (event_type="authentication_failure" OR protocol_version="SSLv3" OR protocol_version="TLS1.0")

📊 Metadata

CVE ID: CVE-2023-32328

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-319

Published: February 7, 2024

Last Updated: November 3, 2025

🔗 References

https://exchange.xforce.ibmcloud.com/vulnerabilities/254657 VDB Entry,Vendor Advisory
https://www.ibm.com/support/pages/node/7106586 Patch,Vendor Advisory
http://seclists.org/fulldisclosure/2024/Nov/0
https://exchange.xforce.ibmcloud.com/vulnerabilities/254657 VDB Entry,Vendor Advisory
https://www.ibm.com/support/pages/node/7106586 Patch,Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-32328, you might also want to check these: