Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm security guardium vulnerabilities and exploits
(subscribe to this query)
490
VMScore
CVE-2017-1254
IBM Security Guardium 10.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume memory resources. IBM X-Force ID: 124634.
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.1
Ibm Security Guardium 10.1.2
Ibm Security Guardium 10.0
570
VMScore
CVE-2017-1258
IBM Security Guardium 10.0 and 10.1 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM X-Force ID: 124685
Ibm Security Guardium 10.1.2
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.0
Ibm Security Guardium 10.1
445
VMScore
CVE-2017-1264
IBM Security Guardium 10.0 does not prove or insufficiently proves that the actors identity is correct which can lead to exposure of resources or functionality to unintended actors. IBM X-Force ID: 124739.
Ibm Security Guardium 10.0
Ibm Security Guardium 10.1
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.1.2
668
VMScore
CVE-2017-1269
IBM Security Guardium 10.0 and 10.1 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-force ID: 124744
Ibm Security Guardium 10.1
Ibm Security Guardium 10.1.2
Ibm Security Guardium 10.0
Ibm Security Guardium 10.0.1
356
VMScore
CVE-2016-0242
IBM Security Guardium 10.x up to and including 10.1 before p100 allows remote authenticated users to obtain sensitive information by reading an Application Error message.
Ibm Security Guardium 10.01
Ibm Security Guardium 10.0
Ibm Security Guardium 10.1
NA
CVE-2023-30436
IBM Security Guardium 11.3, 11.4, and 11.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM ...
Ibm Security Guardium 11.3
Ibm Security Guardium 11.4
Ibm Security Guardium 11.5
445
VMScore
CVE-2017-1271
IBM Security Guardium 9.0, 9.1, and 9.5 supports interaction between multiple actors and allows those actors to negotiate which algorithm should be used as a protection mechanism such as encryption or authentication, but it does not select the strongest algorithm that is availabl...
Ibm Security Guardium 9.1
Ibm Security Guardium 9.0
Ibm Security Guardium 9.5
NA
CVE-2023-42004
IBM Security Guardium 11.3, 11.4, and 11.5 is potentially vulnerable to CSV injection. A remote attacker could execute malicious commands due to improper validation of csv file contents. IBM X-Force ID: 265262.
Ibm Security Guardium 11.3
Ibm Security Guardium 11.4
Ibm Security Guardium 11.5
1 Github repository
445
VMScore
CVE-2018-1501
IBM Security Guardium 10.5, 10.6, and 11.0 could allow an unauthorized user to obtain sensitive information due to missing security controls. IBM X-Force ID: 141226.
Ibm Security Guardium 10.5
Ibm Security Guardium 10.6
Ibm Security Guardium 11.0
NA
CVE-2023-30435
IBM Security Guardium 11.3, 11.4, and 11.5 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessio...
Ibm Security Guardium 11.3
Ibm Security Guardium 11.4
Ibm Security Guardium 11.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »