Platform
ibm
Component
verify-identity-access
Fixed in
11.0.3
10.0.10
11.0.3
10.0.10
CVE-2026-1343 is a reverse proxy bypass vulnerability affecting IBM Verify Identity Access. This flaw allows attackers to circumvent the intended security layer and directly access internal authentication endpoints, potentially leading to unauthorized access and compromise of user credentials. The vulnerability impacts versions 10.0 through 11.0.2. A fix is available from IBM.
Successful exploitation of CVE-2026-1343 allows an attacker to bypass the reverse proxy protecting IBM Verify Identity Access's internal authentication services. This direct access enables attackers to potentially craft malicious requests, impersonate legitimate users, and gain unauthorized access to sensitive data, including user credentials and session tokens. The blast radius extends to any system relying on IBM Verify Identity Access for authentication, potentially impacting a wide range of applications and services. While no direct data exfiltration is explicitly mentioned, the ability to authenticate as a user opens the door to further exploitation and data compromise.
CVE-2026-1343 was publicly disclosed on 2026-04-08. There is no indication of active exploitation or KEV listing at the time of writing. Public proof-of-concept (PoC) code is not currently available, but the vulnerability's nature suggests it could be relatively easy to exploit once a PoC is developed. Monitor security advisories and threat intelligence feeds for updates.
Exploit Status
EPSS
0.05% (16% percentile)
CISA SSVC
CVSS Vector
The primary mitigation for CVE-2026-1343 is to upgrade to a patched version of IBM Verify Identity Access as soon as it becomes available. Until the upgrade can be performed, implement temporary workarounds. A Web Application Firewall (WAF) can be configured to block direct access to internal authentication endpoints. Specifically, rules should be created to prevent requests bypassing the reverse proxy. Review and strengthen network segmentation to limit the potential impact of a successful attack. After upgrade, confirm functionality by attempting authentication through the standard access paths and verifying that internal endpoints are no longer directly accessible.
Apply the security updates provided by IBM for IBM Verify Identity Access Container and IBM Security Verify Access Container to the fixed versions. Refer to the IBM support note (https://www.ibm.com/support/pages/node/7268253) for detailed instructions on how to apply the updates and mitigate the vulnerability.
Vulnerability analysis and critical alerts directly to your inbox.
CVE-2026-1343 is a vulnerability allowing attackers to bypass the reverse proxy in IBM Verify Identity Access, potentially granting unauthorized access to internal authentication endpoints. It has a CVSS score of 7.2 (HIGH).
You are affected if you are using IBM Verify Identity Access versions 10.0 through 11.0.2. Check your version and upgrade as soon as possible.
Upgrade to a patched version of IBM Verify Identity Access. As a temporary workaround, configure a WAF to block direct access to internal authentication endpoints.
There is currently no evidence of active exploitation, but the vulnerability's nature suggests it could be easily exploited once a PoC is developed.
Refer to the official IBM Security Bulletin for CVE-2026-1343 on the IBM Security Support website.
Upload your dependency file and we'll tell you instantly if this and other CVEs hit you.