The datasource definition editor in IBM InfoSphere Guardium 8.2 and earlier, when the save-password setting is enabled, transmits cleartext database credentials, which allows remote attackers to obtain sensitive information by sniffing the network.
CPE | Name | Operator | Version |
---|---|---|---|
infosphere_guardium | le | 8.2 | |
infosphere_guardium | eq | 8.00 | |
infosphere_guardium | eq | 8.01 |