2 matches found
Security Bulletin: IBM Security Guardium is affected by XML External Entity vulnerability (CVE-2017-1254)
Summary IBM Security Guardium is vulnerable XML External Entity Injection XXE error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume memory resources. IBM Security Guardium has fixed this vulnerability Vulnerability...
CVE-2017-1254
CVE-2017-1254 affects IBM Security Guardium: XML External Entity (XXE) processing vulnerability in Guardium 10.x. A remote attacker could exploit XXE to access sensitive data or exhaust memory during XML processing. Root cause: improper handling of external entities in XML parsing. Impact per sou...