2 matches found
Security Bulletin: Multiple Vulnerabilities in IBM Security Guardium Key Lifecycle Manager
Summary There are multiple vulnerabilities identified in IBM Security Guardium Key Lifecycle Manager. These vulnerabilties have been fixed in IBM Security Guardium Key Lifecycle Manager v4.2 . Please upgrade to GKLM v4.2 for the fixes. Vulnerability Details CVEID:CVE-2023-25689 DESCRIPTION: IBM...
CVE-2023-25684
Summary: CVE-2023-25684 affects IBM Security Guardium Key Lifecycle Manager (GKLM) components. Affected versions: GKLM 3.0, 3.0.1, 4.0, 4.1, and 4.1.1. Root cause: SQL injection due to insufficient input validation, allowing a remote attacker to send crafted SQL commands to the back-end database....