Lucene search
K

56 matches found

Vulnrichment
Vulnrichment
added 2026/04/22 11:23 p.m.4 views

CVE-2026-4919 IBM Guardium Data Protection is affected by multiple vulnerabilities

IBM Guardium Data Protection 12.1 is vulnerable to cross-site scripting. This vulnerability allows an administrative user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

4.8CVSS5.5AI score0.00185EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/13 8:59 p.m.18 views

Security Bulletin: IBM Guardium Data Protection is affected by multiple vulnerabilities

Summary IBM Guardium Data Protection has addressed these vulnerabilities in an update. Vulnerability Details CVEID:CVE-2025-31650 DESCRIPTION: Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up ...

8.8CVSS7.4AI score0.66933EPSS
Exploits8Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-25460

Malware in sbrugna...

7.5CVSS4.2AI score0.00806EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-7892

Malicious code in bioql PyPI...

7.5CVSS6.8AI score0.00479EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-7835

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00629EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-7833

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.00937EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-23841

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00199EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/08/28 2:49 p.m.11 views

Security Bulletin: IBM Guardium Data Protection is affected by an SQL Injection via username vulnerability (CVE-2024-55906).

Summary IBM Guardium Data Protection has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2024-55906 DESCRIPTION: IBM Security Guardium is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view,...

7.2AI score
Exploits0Affected Software1
CVE
CVE
added 2025/08/06 2:28 p.m.27 views

CVE-2025-36020

CVE-2025-36020 affects IBM Guardium Data Protection. According to the connected IBM bulletin, the issue enables information disclosure due to cleartext transmission of sensitive credential information. Affected versions are IBM Guardium Data Protection 11.5, 12.0, and 12.1. The bulletin recommend...

7.5CVSS5.9AI score0.00199EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/06 12:0 a.m.5 views

PT-2025-32176 · Ibm · Guardium Data Protection

Name of the Vulnerable Software and Affected Versions: IBM Guardium Data Protection affected versions not specified Description: IBM Guardium Data Protection may allow a remote attacker to obtain sensitive information due to the cleartext transmission of sensitive credential information...

7.5CVSS6AI score0.00199EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/08/05 3:36 p.m.15 views

Security Bulletin: IBM Guardium Data Protection is affected by a Privilege Escalation vulnerability (CVE-2025-3473)

Summary IBM Guardium Data Protection has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2025-3473 DESCRIPTION: IBM Security Guardium could allow a local privileged user to escalate their privileges to root due to insecure inherited permissions created by the program...

6.7CVSS5.9AI score0.00124EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/19 5:35 a.m.22 views

Security Bulletin: IBM Guardium Data Protection is affected by a snowflake-jdbc-3.14.0.jar vulnerability (CVE-2024-43382)

Summary IBM Guardium Data Protection has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2024-43382 DESCRIPTION: Snowflake JDBC driver could provide weaker than expected security, caused by an incorrect security setting. A remote authenticated attacker could exploit thi...

5.9CVSS5.7AI score0.00173EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/19 5:35 a.m.21 views

Security Bulletin: IBM Guardium Data Protection is affected by multiple kernel vulnerabilities

Summary IBM Guardium Data Protection has addressed these vulnerabilities in an update. Vulnerability Details CVEID:CVE-2024-26641 DESCRIPTION: In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could...

5.5CVSS7.9AI score0.00241EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/19 5:35 a.m.17 views

Security Bulletin: IBM Guardium Data Protection is affected by multiple vulnerabilities (CVE-2024-53677, CVE-2025-23184)

Summary IBM Guardium Data Protection has addressed these vulnerabilities in an update. Vulnerability Details CVEID:CVE-2024-53677 DESCRIPTION: File upload logic in Apache Struts is flawed. An attacker can manipulate file upload params to enable paths traversal and under some circumstances this ca...

9.8CVSS8.2AI score0.78198EPSS
Exploits15Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/19 5:35 a.m.10 views

Security Bulletin: IBM Guardium Data Protection is affected by an Incorrect Permission Assignment for Critical Resource vulnerability (CVE-2025-25023)

Summary IBM Guardium Data Protection has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2025-25023 DESCRIPTION: IBM Security Guardium could allow a privileged user to read any file on the system due to incorrect privilege assignment. CWE:CWE-266: Incorrect Privilege...

4.9CVSS4.9AI score0.00314EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/19 5:35 a.m.16 views

Security Bulletin: IBM Guardium Data Protection is affected by multiple vulnerabilities.

Summary IBM Guardium Data Protection has addressed these vulnerabilities in an update. Vulnerability Details CVEID:CVE-2025-3440 DESCRIPTION: IBM Security Guardium is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the W...

7.5CVSS7.9AI score0.01022EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/19 5:35 a.m.73 views

Security Bulletin: IBM Guardium Data Security Center is affected by multiple vulnerabilities

Summary IBM Guardium Data Security Center has addressed these vulnerabilities Vulnerability Details CVEID:CVE-2025-29927 DESCRIPTION: Next.js is a React framework for building full-stack web applications. Starting in version 1.11.4 and prior to versions 12.3.5, 13.5.9, 14.2.25, and 15.2.3, it is...

9.1CVSS10AI score0.99621EPSS
Exploits71Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/19 12:54 a.m.33 views

Security Bulletin: IBM Guardium Data Security Center is affected by multiple vulnerabilities

Summary IBM Guardium Data Security Center has addressed these vulnerabilities with an update Vulnerability Details CVEID:CVE-2024-51744 DESCRIPTION: golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in ParseWithClaims can lead to situation where use...

9.8CVSS9.5AI score0.03558EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/09 4:37 p.m.44 views

Security Bulletin: IBM Guardium Data Protection is affected by multiple vulnerabilities.

Summary IBM Guardium Data Protection has addressed these issues with an update. Vulnerability Details CVEID:CVE-2024-40906 DESCRIPTION: In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always stop health timer during driver removal Currently, if teardownhca fails to...

7.8CVSS8.9AI score0.00815EPSS
Exploits1Affected Software1
Cvelist
Cvelist
added 2022/05/10 3:45 p.m.17 views

CVE-2021-39024

IBM Guardium Data Encryption GDE 4.0.0.0 and 5.0.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...

4.8CVSS5.9AI score0.00364EPSS
Exploits0References2
Rows per page
Query Builder