Lucene search
China National Vulnerability DatabaseCNVD-2023-66731HistoryAug 29, 2023 - 12:00 a.m.
IBM Security Guardium SQL Injection Vulnerability (CNVD-2023-66731)
2023-08-2900:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
ibm
guardium
sql injection
vulnerability
data protection
sql commands
database
0.0005 Low
EPSS
Percentile
17.9%
IBM Security Guardium is a suite of platforms from International Business Machines (IBM) that provide data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. IBM Security Guardium version 11.4 suffers from a SQL injection vulnerability that stems from the application’s lack of validation of externally entered SQL statements, which can be exploited by an attacker to execute illegal SQL commands to obtain sensitive database data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm security guardium | eq | 11.4 |
Related
cve
cve
CVE-2023-33852
2023-08-27 23:15:34
cvelist
cvelist
CVE-2023-33852 IBM Security Guardium SQL injection
2023-08-27 22:46:35
nvd
nvd
CVE-2023-33852
2023-08-27 23:15:34
prion
prion
Sql injection
2023-08-27 23:15:00
