IBM Security Guardium is a suite of platforms from International Business Machines (IBM) that provide data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. A command execution vulnerability exists in IBM Security Guardium version 11.4, which stems from the application’s failure to properly filter construct command special characters, commands, etc. An authenticated, remote attacker could exploit this vulnerability to execute arbitrary commands on the system by sending a specially crafted request.
CPE | Name | Operator | Version |
---|---|---|---|
ibm security guardium | eq | 11.4 |