Use of Password System for Primary Authentication

CVE-2024-45675

High

8.4/10

Summary

IBM Informix Dynamic Server 14.10 could allow a local user on the system to log into the Informix server as administrator without a password.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-309 - Use of Password System for Primary Authentication

The use of password systems as the primary means of authentication may be subject to several flaws or shortcomings, each reducing the effectiveness of the mechanism.

References

Advisory Timeline

Published Dec 02, 2025

Use of Password System for Primary Authentication

CVE-2024-45675

Summary

CWE-309 - Use of Password System for Primary Authentication

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS