Lucene search
K

121 matches found

OSV
OSV
added 2021/06/28 4:15 p.m.4 views

CVE-2021-20413

IBM Guardium Data Encryption GDE 4.0.0.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 196212...

4.3CVSS5.8AI score0.00751EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/06/28 3:55 p.m.17 views

CVE-2021-20413

IBM Guardium Data Encryption GDE 4.0.0.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 196212...

4.3CVSS4.3AI score0.00751EPSS
Exploits0References2
OSV
OSV
added 2021/01/13 6:15 p.m.1 views

CVE-2019-4702

IBM Security Guardium Data Encryption GDE 3.0.0.2 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors...

8.1CVSS6.1AI score0.00428EPSS
Exploits0References2
NVD
NVD
added 2021/01/13 6:15 p.m.16 views

CVE-2019-4687

IBM Security Guardium Data Encryption GDE 3.0.0.2 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 171823...

5.3CVSS4.2AI score0.00447EPSS
Exploits0References2
OSV
OSV
added 2021/01/13 6:15 p.m.5 views

CVE-2019-4687

IBM Security Guardium Data Encryption GDE 3.0.0.2 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 171823...

5.3CVSS6.1AI score0.00447EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/01/13 12:0 a.m.3 views

PT-2021-9116 · Ibm · Ibm Security Guardium Data Encryption

Name of the Vulnerable Software and Affected Versions: IBM Security Guardium Data Encryption GDE version 3.0.0.2 Description: The issue concerns the specification of permissions for a security-critical resource, allowing it to be read or modified by unintended actors. Recommendations: For version...

8.1CVSS7.1AI score0.00428EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/01/13 12:0 a.m.5 views

PT-2021-9113 · Ibm · Ibm Security Guardium Data Encryption

Name of the Vulnerable Software and Affected Versions: IBM Security Guardium Data Encryption GDE version 3.0.0.2 Description: The issue is related to the use of weaker than expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive information. Recommendations: F...

7.5CVSS6.5AI score0.00578EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/01/13 12:0 a.m.8 views

PT-2021-9115 · Ibm · Ibm Security Guardium Data Encryption

Name of the Vulnerable Software and Affected Versions: IBM Security Guardium Data Encryption GDE version 3.0.0.2 Description: The issue allows for potential information disclosure due to sensitive information being stored in URL parameters. This could be accessed by unauthorized parties through...

5.3CVSS6.4AI score0.00447EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/01/13 12:0 a.m.5 views

IBM Security Guardium 加密问题漏洞

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. A weak cryptographic algorithm vulnerability exists in IBM Security Guardium Data Encryption 3.0.0.2. An attacker...

7.5CVSS6.6AI score0.00578EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/01/13 12:0 a.m.8 views

IBM Security Guardium Data Encryption 访问控制错误漏洞

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. An improper privilege control vulnerability exists in IBM Security Guardium Data Encryption 3.0.0.2. An attacker...

8.1CVSS6.2AI score0.00428EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2021/01/12 2:42 p.m.50 views

Security Bulletin: Multiple Vulnerabilities in IBM Guardium Data Encryption (GDE)

Summary There are multiple vulnerabilities identified in IBM Guardium Data Encryption GDE. These vulnerabilities have been fixed in GDE 4.0.0.4. Please apply the latest version for the fixes. Vulnerability Details CVEID: CVE-2017-7957 DESCRIPTION: XStream is vulnerable to a denial of service,...

10CVSS1.3AI score0.77245EPSS
Exploits18Affected Software1
CNVD
CNVD
added 2020/08/27 12:0 a.m.3 views

IBM Security Guardium Data Encryption (GDE) Information Disclosure Vulnerability (CNVD-2020-49510)

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. An information disclosure vulnerability exists in IBM Security Guardium Data Encryption GDE 3.0.0.2. An attacker...

5.3CVSS6AI score0.00657EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/27 12:0 a.m.4 views

IBM Security Guardium Data Encryption (GDE) Information Disclosure Vulnerability (CNVD-2020-49511)

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. An information disclosure vulnerability exists in IBM Security Guardium Data Encryption GDE 3.0.0.2. An attacker...

4CVSS8.1AI score0.00499EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/27 12:0 a.m.2 views

IBM Security Guardium Data Encryption (GDE) Hardcoded Credentials Vulnerability

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. A hard-coded credentials vulnerability exists in IBM Security Guardium Data Encryption GDE 3.0.0.2, which can be...

9.8CVSS8.6AI score0.01248EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/27 12:0 a.m.3 views

IBM Security Guardium Data Encryption (GDE) Password Strength Requirement Vulnerability

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. A password strength requirement vulnerability exists in IBM Security Guardium Data Encryption GDE 3.0.0.2, which...

7.5CVSS6.9AI score0.00827EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/27 12:0 a.m.3 views

IBM Security Guardium Data Encryption (GDE) Information Disclosure Vulnerability (CNVD-2020-49938)

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. An information disclosure vulnerability exists in IBM Security Guardium Data Encryption GDE 3.0.0.2, which stems...

5.3CVSS8.2AI score0.0038EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/27 12:0 a.m.3 views

IBM Security Guardium Cross-Site Scripting Vulnerability (CNVD-2020-50543)

IBM Security Guardium is a suite of platforms from IBM in the United States that provide data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. A cross-site scripting vulnerability exists in IBM Security Guardium...

5.3CVSS6.3AI score0.00657EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/27 12:0 a.m.2 views

IBM Security Guardium Data Encryption (GDE) Cross-Site Scripting Vulnerability

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. A cross-site scripting vulnerability exists in IBM Security Guardium Data Encryption GDE 3.0.0.2, which can be...

5.4CVSS8AI score0.00351EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/27 12:0 a.m.2 views

IBM Security Guardium Data Encryption (GDE) Information Disclosure Vulnerability (CNVD-2020-49509)

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. An information disclosure vulnerability exists in IBM Security Guardium Data Encryption GDE 3.0.0.2. The...

7.5CVSS8.1AI score0.00557EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/27 12:0 a.m.6 views

IBM Security Guardium Data Encryption (GDE) Information Disclosure Vulnerability (CNVD-2020-49954)

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. An information disclosure vulnerability exists in IBM Security Guardium Data Encryption GDE 3.0.0.2, which can be...

4CVSS6AI score0.00205EPSS
Exploits0References1
Rows per page
Query Builder