Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMABB3BA1DD9AFFF72EFD4A8EE4E2525B74B85FB922D94AFE1549A5795E04CBED8
HistoryJun 16, 2018 - 9:41 p.m.

Security Bulletin: Path Traversal affects IBM Security Guardium Database Activity Monitor (CVE-2016-0298)

2018-06-1621:41:32
www.ibm.com
8

EPSS

0.001

Percentile

43.1%

JSON

Summary

IBM Security Guardium Database Activity Monitor could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to view arbitrary files on the system.

Vulnerability Details

CVEID: CVE-2016-0298**
DESCRIPTION:** IBM Security Guardium Database Activity Monitor could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to view arbitrary files on the system.
CVSS Base Score: 4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/111380&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)

Affected Products and Versions

IBM Security Guardium Database Activity Monitor V10

Remediation/Fixes

<Product

| VRMF| Remediation/First Fix
—|—|—
IBM Security Guardium Database Activity Monitor| 10| https://www-945.ibm.com/support/fixcentral/swg/selectFixes?product=ibm/Information+Management/InfoSphere+Guardium&release=All&platform=All&function=fixId&fixids=SqlGuard_10.0p100_GPU-May-2016-V10.1&includeSupersedes=0&source=fc

Related

cve 1
prion 1
cvelist 1
nvd 1
cve
cve
CVE-2016-0298
2016-06-29 01:59:05
prion
prion
Directory traversal
2016-06-29 01:59:00
cvelist
cvelist
CVE-2016-0298
2016-06-29 01:00:00
nvd
nvd
CVE-2016-0298
2016-06-29 01:59:05

EPSS

0.001

Percentile

43.1%

JSON
Related for ABB3BA1DD9AFFF72EFD4A8EE4E2525B74B85FB922D94AFE1549A5795E04CBED8
cve1prion1cvelist1nvd1