Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Security Guardium Security Vulnerabilities - 2020

cve
cve

CVE-2018-1501

IBM Security Guardium 10.5, 10.6, and 11.0 could allow an unauthorized user to obtain sensitive information due to missing security controls. IBM X-Force ID: 141226.

7.5CVSS

7AI Score

0.001EPSS

2020-08-26 07:15 PM
17
cve
cve

CVE-2020-4177

IBM Security Guardium 11.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 174732.

9.8CVSS

9AI Score

0.001EPSS

2020-06-03 03:15 PM
26
cve
cve

CVE-2020-4180

IBM Security Guardium 11.1 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 174735.

8.8CVSS

8.5AI Score

0.002EPSS

2020-06-03 03:15 PM
25
cve
cve

CVE-2020-4182

IBM Security Guardium 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 174738.

6.1CVSS

5.8AI Score

0.001EPSS

2020-06-03 03:15 PM
23
cve
cve

CVE-2020-4183

IBM Security Guardium 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 174739.

6.1CVSS

5.8AI Score

0.001EPSS

2020-06-04 02:15 PM
27
cve
cve

CVE-2020-4185

IBM Security Guardium 10.5, 10.6, and 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 174803.

7.5CVSS

7.2AI Score

0.001EPSS

2020-07-30 01:15 PM
21
cve
cve

CVE-2020-4186

IBM Security Guardium 10.5, 10.6, and 11.1 could disclose sensitive information on the login page that could aid in further attacks against the system. IBM X-Force ID: 174804.

5.3CVSS

4.9AI Score

0.001EPSS

2020-07-30 01:15 PM
21
cve
cve

CVE-2020-4187

IBM Security Guardium 11.1 could disclose sensitive information on the login page that could aid in further attacks against the system. IBM X-Force ID: 174805.

5.3CVSS

4.9AI Score

0.001EPSS

2020-06-03 03:15 PM
24
cve
cve

CVE-2020-4188

IBM Security Guardium 10.6 and 11.1 may use insufficiently random numbers or values in a security context that depends on unpredictable numbers. IBM X-Force ID: 174807.

5.3CVSS

5.1AI Score

0.001EPSS

2020-06-23 06:15 PM
21
cve
cve

CVE-2020-4190

IBM Security Guardium 10.6, 11.0, and 11.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 174851.

6.7CVSS

6.5AI Score

0.0004EPSS

2020-06-03 03:15 PM
22
cve
cve

CVE-2020-4191

IBM Security Guardium 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 174852.

4.4CVSS

4.5AI Score

0.0004EPSS

2020-06-04 02:15 PM
21
cve
cve

CVE-2020-4193

IBM Security Guardium 11.1 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 174857.

9.8CVSS

8.8AI Score

0.007EPSS

2020-06-04 02:15 PM
22
cve
cve

CVE-2020-4307

IBM Security Guardium 11.1 could allow an attacker on the same network to gain access to the Solr dashboard and cause a denial of service attack. IBM X-Force ID: 176997.

6.5CVSS

6.5AI Score

0.001EPSS

2020-06-03 03:15 PM
24
cve
cve

CVE-2020-4678

IBM Security Guardium 11.2 could allow an attacker with admin access to obtain and read files that they normally would not have access to. IBM X-Force ID: 186423.

4.9CVSS

5AI Score

0.001EPSS

2020-10-12 02:15 PM
26
cve
cve

CVE-2020-4679

IBM Security Guardium 11.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 186424.

4.8CVSS

5AI Score

0.001EPSS

2020-10-12 02:15 PM
23
cve
cve

CVE-2020-4680

IBM Security Guardium 11.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 186426.

5.4CVSS

5.3AI Score

0.001EPSS

2020-10-12 02:15 PM
25
cve
cve

CVE-2020-4681

IBM Security Guardium 11.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 186427.

5.4CVSS

5.3AI Score

0.001EPSS

2020-10-12 02:15 PM
22
cve
cve

CVE-2020-4689

IBM Security Guardium 11.2 is vulnerable to CVS Injection. A remote privileged attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-ForceID: 186696.

6.8CVSS

6.8AI Score

0.001EPSS

2020-10-12 02:15 PM
33