📦 Security Guardium
by Ibm
🔍 What is Security Guardium?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability allows remote authenticated attackers to execute arbitrary commands on IBM Security Guardium systems by sending specially crafted requests. It affects IBM Security Guardium versions...
CVE-2023-35893 is a critical command injection vulnerability in IBM Security Guardium that allows authenticated remote attackers to execute arbitrary commands on affected systems. This affects Guardiu...
IBM Security Guardium 11.3 contains hard-coded credentials that could allow attackers to authenticate to the system, communicate with external components, or decrypt internal data. This affects all de...
IBM Security Guardium 11.2 has a weak default password policy that doesn't enforce strong passwords, making user accounts vulnerable to brute-force attacks. This affects all installations using defaul...
IBM Security Guardium 11.2 contains hard-coded credentials that could allow attackers to authenticate to the system, communicate with external components, or decrypt internal data. This affects all de...
This vulnerability in IBM Security Guardium allows a local user to gain elevated privileges on the system due to improper permissions control. It affects IBM Security Guardium versions 11.3, 11.4, 11....
IBM Security Guardium versions 11.3 and 11.4 have an authentication flaw that allows attackers to bypass rate limiting on login attempts. This enables brute force attacks that could compromise user cr...
CVE-2023-33852 is an SQL injection vulnerability in IBM Security Guardium 11.4 that allows remote attackers to execute arbitrary SQL commands. This could enable attackers to view, modify, or delete se...
IBM Security Guardium versions 11.3, 11.4, and 11.5 contain a stored cross-site scripting (XSS) vulnerability that allows authenticated users to inject malicious JavaScript into the web interface. Thi...
CVE-2022-43907 is an OS command injection vulnerability in IBM Security Guardium that allows authenticated remote attackers to execute arbitrary commands on the system. This affects IBM Security Guard...
This vulnerability in IBM Security Guardium 11.3 allows local users to escalate their privileges due to improper permission controls. Attackers with local access can gain higher privileges than intend...
IBM Security Guardium versions 10.5 and 11.3 use weak cryptographic algorithms that could allow attackers to decrypt sensitive information stored or transmitted by the system. This affects organizatio...
CVE-2021-20385 is a remote command execution vulnerability in IBM Security Guardium that allows authenticated attackers to execute arbitrary commands on affected systems. This affects IBM Security Gua...
IBM Security Guardium 11.2 stores user credentials in plain text, allowing local users to read sensitive authentication data. This affects all deployments of IBM Security Guardium 11.2 where local use...
This vulnerability allows remote authenticated attackers to execute arbitrary operating system commands on IBM Security Guardium systems by sending specially crafted requests. It affects IBM Security ...
IBM Security Guardium 12.0 discloses sensitive technical error information to remote attackers via browser responses. This information leakage could enable reconnaissance for further attacks. Organiza...
IBM Security Guardium 12.0 contains an improper input escaping vulnerability that allows authenticated privileged users to download arbitrary files from the system. This affects organizations using IB...
IBM Security Guardium 11.5 contains a stored cross-site scripting (XSS) vulnerability that allows privileged users to inject malicious JavaScript into the web interface. This could enable attackers to...
IBM Security Guardium versions 11.4, 11.5, and 12.0 contain a cross-site scripting (XSS) vulnerability that allows authenticated users to inject malicious JavaScript into the web interface. This could...