CVE-2026-1342 - Vulnerability Analysis
HighCVSS: 8.5Last Updated: April 9, 2026
IBM Verify Identity Access & Security Verify Access - Stored XSS
Overview
IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 contain a stored XSS caused by execution of malicious scripts from outside the control sphere, letting locally authenticated users execute scripts.
Severity & Score
Impact
Locally authenticated users can execute malicious scripts, potentially leading to session hijacking or privilege escalation.
Mitigation
Update to the latest available version beyond 11.0.2 for Verify Identity Access and 10.0.9.1 for Security Verify Access.
Social Media Activity(2 posts)
š CVE-2026-1342 - High (8.5) IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 and IBM Verify Identity Access 11.0 through 11.0.2 and IBM Security Verify Access 10.0 through 10.0.9.1 could allow a locally a... š https://www.thehackerwire.com/vulnerability/CVE-2026-1342/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original postš CVE-2026-1342 - High (8.5) IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 and IBM Verify Identity Access 11.0 through 11.0.2 and IBM Security Verify Access 10.0 through 10.0.9.1 could allow a locally a... š https://www.thehackerwire.com/vulnerability/CVE-2026-1342/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original postRelated Resources
Details
- CVE ID
- CVE-2026-1342
- Severity
- High
- CVSS Score
- 8.5
- Type
- stored_xss
- Status
- confirmed
- EPSS
- 1.3%
- Social Posts
- 2
CWE
- CWE-829
CVSS Metrics
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:L