The datasource definition editor in IBM InfoSphere Guardium 8.2 and previous versions, when the save-password setting is enabled, transmits cleartext database credentials, which allows remote malicious users to obtain sensitive information by sniffing the network.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm infosphere guardium |
||
ibm infosphere guardium 8.01 |
||
ibm infosphere guardium 8.00 |