CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

IBM Security Bulletins•added 2021/09/08 6:35 p.m.•19 views

Security Bulletin: IBM Security Guardium is affected by an Improper Restriction of Excessive Authentication Attempts vulnerability (CVE-2021-20427)

Summary IBM Security Guardium has fixed this vulnerability Vulnerability Details CVEID: CVE-2021-20427 DESCRIPTION: IBM Security Guardium uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. CVSS Base score: 5.3 CVSS Temporal Score: See...

7.5CVSS1.5AI score0.00223EPSS

Exploits0Affected Software1

Prion•added 2021/08/11 4:15 p.m.•13 views

Information disclosure

IBM Security Guardium 11.2 could disclose sensitive information due to reliance on untrusted inputs that could aid in further attacks against the system. IBM X-Force ID: 196281...

4CVSS4.1AI score0.00119EPSS

Exploits0References2Affected Software1

OSV•added 2021/05/24 2:15 p.m.•0 views

CVE-2021-20557

IBM Security Guardium 11.2 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 199184...

7.2CVSS6.1AI score0.01465EPSS

Exploits0References2

NVD•added 2021/05/24 2:15 p.m.•11 views

CVE-2021-20428

IBM Security Guardium 11.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 196315...

5.3CVSS0.00177EPSS

Exploits0References2

NVD•added 2021/05/24 2:15 p.m.•13 views

CVE-2021-20557

IBM Security Guardium 11.2 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 199184...

9CVSS0.01465EPSS

Exploits0References2

Prion•added 2021/05/24 2:15 p.m.•11 views

Cross site scripting

IBM Security Guardium 11.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 195767...

4.3CVSS6AI score0.00166EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2021/01/26 12:0 a.m.•1 views

CVE-2020-4952

IBM Security Guardium 11.2 could allow an authenticated user to gain root access due to improper access control. IBM X-Force ID: 192028...

9CVSS8.2AI score0.00699EPSS

Exploits0References3Affected Software1

OSV•added 2020/10/12 2:15 p.m.•2 views

CVE-2020-4689

IBM Security Guardium 11.2 is vulnerable to CVS Injection. A remote privileged attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-ForceID: 186696...

6.8CVSS6.9AI score0.00677EPSS

Exploits0References2

OSV•added 2020/10/12 2:15 p.m.•1 views

CVE-2020-4680

5.4CVSS5.8AI score0.00206EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by