Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm security guardium 10.1.2 vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2017-1253
IBM Security Guardium 10.0 could allow a remote authenticated malicious user to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 124633.
Ibm Security Guardium 10.0
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.1
Ibm Security Guardium 10.1.2
490
VMScore
CVE-2017-1254
IBM Security Guardium 10.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume memory resources. IBM X-Force ID: 124634.
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.1
Ibm Security Guardium 10.1.2
Ibm Security Guardium 10.0
570
VMScore
CVE-2017-1258
IBM Security Guardium 10.0 and 10.1 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM X-Force ID: 124685
Ibm Security Guardium 10.1.2
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.0
Ibm Security Guardium 10.1
445
VMScore
CVE-2017-1264
IBM Security Guardium 10.0 does not prove or insufficiently proves that the actors identity is correct which can lead to exposure of resources or functionality to unintended actors. IBM X-Force ID: 124739.
Ibm Security Guardium 10.0
Ibm Security Guardium 10.1
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.1.2
668
VMScore
CVE-2017-1269
IBM Security Guardium 10.0 and 10.1 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-force ID: 124744
Ibm Security Guardium 10.1
Ibm Security Guardium 10.1.2
Ibm Security Guardium 10.0
Ibm Security Guardium 10.0.1
312
VMScore
CVE-2017-1600
IBM Security Guardium 10.0 Database Activity Monitor is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ses...
Ibm Security Guardium 10.0
Ibm Security Guardium 10.1.0
Ibm Security Guardium 10.1.2
Ibm Security Guardium 10.1.3
Ibm Security Guardium 10.0.1
356
VMScore
CVE-2017-1257
IBM Security Guardium 10.0 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 124684.
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.1.0
Ibm Security Guardium 10.1.2
Ibm Security Guardium 10.1.3
Ibm Security Guardium 10.0
490
VMScore
CVE-2017-1266
IBM Security Guardium 10.0 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 124741.
Ibm Security Guardium 10.0
Ibm Security Guardium 10.1.0
Ibm Security Guardium 10.1.3
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.1.2
187
VMScore
CVE-2017-1270
IBM Security Guardium 10.0 does not renew a session variable after a successful authentication which could lead to session fixation/hijacking vulnerability. This could force a user to utilize a cookie that may be known to an attacker. IBM X-Force ID: 124745.
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.1.0
Ibm Security Guardium 10.1.2
Ibm Security Guardium 10.1.3
Ibm Security Guardium 10.0
187
VMScore
CVE-2017-1261
IBM Security Guardium 10.0 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 124736.
Ibm Security Guardium 10.1.2
Ibm Security Guardium 10.0
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.1.0
Ibm Security Guardium 10.1.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »