6 matches found
Security Bulletin: IBM Security Guardium is affected by a Incorrect Permission Assignment for Critical Resource vulnerability (CVE-2017-1266 )
Summary IBM Security Guardium has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2017-1266 DESCRIPTION: IBM Security Guardium specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. CVSS Base...
Security Bulletin: IBM Security Guardium is affected by Open Source libxml2 vulnerabilities
Summary IBM Security Guardium has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2017-9050 DESCRIPTION: libxml2 is vulnerable to a heap-based buffer overflow, caused by a buffer over-read flaw in the xmlDictAddString function in dict.c. By sending a specially-crafted...
CVE-2023-26278 IBM QRadar WinCollect Agent privilege escalation
IBM QRadar WinCollect Agent 10.0 through 10.1.3 could allow a local authenticated attacker to gain elevated privileges on the system. IBM X-Force ID: 248158...
PT-2023-2980 · Ibm · Ibm Qradar Wincollect Agent
Name of the Vulnerable Software and Affected Versions: IBM QRadar WinCollect Agent versions 10.0 through 10.1.3 Description: The issue is related to insufficient access control in the IBM QRadar WinCollect Agent, which could allow a local user to execute commands on the system due to execution wi...
Security Bulletin: IBM Security Guardium Database Activity Monitor is affected by Lack or Misconfiguration of Browser Security Header (CVE-2017-1600)
Summary IBM Security Guardium Database Activity Monitor is vulnerable to cross-site scripting. IBM Security Guardium Database Activity Monitor has fixed this vulenrability Vulnerability Details CVEID: CVE-2017-1600 DESCRIPTION: IBM Security Guardium Database Activity Monitor is vulnerable to...
Security Bulletin: IBM Security Guardium Database Activity Monitor is affected by Password Returned in HTTP Response vulnerability (CVE-2017-1596)
Summary IBM Security Guardium Database Activity Monitor could allow a local attacker to obtain sensitive information via unspecified vectors. IBM Security Guardium Database Activity Monitor has fixed this vulenrability. Vulnerability Details CVEID: CVE-2017-1596 DESCRIPTION: IBM Security Guardium...