Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Security_guardium
(Ibm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 106 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-12-19 | CVE-2024-49336 | IBM Security Guardium 11.5 and 12.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. | Security_guardium | 5.4 | ||
| 2024-05-14 | CVE-2023-47711 | IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow an authenticated user to upload files that would cause a denial of service. IBM X-Force ID: 271526. | Security_guardium | 6.5 | ||
| 2024-05-14 | CVE-2023-47709 | IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 271524. | Security_guardium | 8.8 | ||
| 2024-05-14 | CVE-2023-47712 | IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a local user to gain elevated privileges on the system due to improper permissions control. IBM X-Force ID: 271527. | Security_guardium | N/A | ||
| 2024-05-24 | CVE-2023-47710 | IBM Security Guardium 11.4, 11.5, and 12.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 271525. | Security_guardium | 5.4 | ||
| 2020-06-03 | CVE-2020-4177 | IBM Security Guardium 11.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 174732. | Security_guardium | 9.8 | ||
| 2020-06-03 | CVE-2020-4180 | IBM Security Guardium 11.1 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 174735. | Security_guardium | 8.8 | ||
| 2020-06-03 | CVE-2020-4182 | IBM Security Guardium 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 174738. | Security_guardium | 6.1 | ||
| 2020-06-03 | CVE-2020-4187 | IBM Security Guardium 11.1 could disclose sensitive information on the login page that could aid in further attacks against the system. IBM X-Force ID: 174805. | Security_guardium | 5.3 | ||
| 2020-06-03 | CVE-2020-4190 | IBM Security Guardium 10.6, 11.0, and 11.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 174851. | Security_guardium | 6.7 |