Lucene search
IBM20C485C483510E669F3B2E45AA00D99DB171FEF1A53C9406A0AD410E3941C91DHistoryJun 23, 2021 - 8:43 p.m.
Security Bulletin: IBM Security Guardium is affected by an Improper Neutralization of Special Elements used in an SQL Command vulnerability
2021-06-2320:43:43
www.ibm.com
15
ibm security guardium
sql injection
vulnerability
updates
EPSS
0.001
Percentile
43.2%
Summary
IBM Security Guardium has fixed this vulnerability
Vulnerability Details
CVEID:CVE-2020-4990
**DESCRIPTION:**IBM Security Guardium is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database.
CVSS Base score: 7.6
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/192710 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| IBM Security Guardium | 11.2 |
IBM Security Guardium| 11.3
Remediation/Fixes
Workarounds and Mitigations
None
Related
cvelist
cvelist
CVE-2020-4990
2021-05-24 13:55:37
nvd
nvd
CVE-2020-4990
2021-05-24 14:15:07
prion
prion
Sql injection
2021-05-24 14:15:00
cve
cve
CVE-2020-4990
2021-05-24 14:15:07
EPSS
0.001
Percentile
43.2%
Related for 20C485C483510E669F3B2E45AA00D99DB171FEF1A53C9406A0AD410E3941C91D