Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Security_guardium
(Ibm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 112 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-04-09 | CVE-2025-25023 | IBM Security Guardium 11.4 and 12.1 could allow a privileged user to read any file on the system due to incorrect privilege assignment. | Security_guardium | 4.9 | ||
| 2025-05-15 | CVE-2025-3440 | IBM Security Guardium 11.5 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. | Security_guardium | 5.5 | ||
| 2024-05-16 | CVE-2023-47717 | IBM Security Guardium 12.0 could allow a privileged user to perform unauthorized actions that could lead to a denial of service. IBM X-Force ID: 271690. | Security_guardium | N/A | ||
| 2025-05-28 | CVE-2025-25025 | IBM Security Guardium 12.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. | Security_guardium | 5.3 | ||
| 2025-05-28 | CVE-2025-25026 | IBM Security Guardium 12.0 could allow an authenticated user to obtain sensitive information due to an incorrect authentication check. | Security_guardium | 4.3 | ||
| 2025-05-28 | CVE-2025-25029 | IBM Security Guardium 12.0 could allow a privileged user to download any file on the system due to improper escaping of input. | Security_guardium | 6.5 | ||
| 2024-12-19 | CVE-2024-49336 | IBM Security Guardium 11.5 and 12.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. | Security_guardium | 5.4 | ||
| 2024-05-14 | CVE-2023-47711 | IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow an authenticated user to upload files that would cause a denial of service. IBM X-Force ID: 271526. | Security_guardium | 6.5 | ||
| 2024-05-14 | CVE-2023-47709 | IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 271524. | Security_guardium | 8.8 | ||
| 2024-05-14 | CVE-2023-47712 | IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a local user to gain elevated privileges on the system due to improper permissions control. IBM X-Force ID: 271527. | Security_guardium | N/A |