Security Guardium Big Data Intelligence Security Vulnerabilities and Issues — Security Guardium Big Data Intelligence CVE List

Lucene search

IbmSecurity Guardium Big Data Intelligence

4 matches found

CVE•added 2019/10/29 12:15 a.m.•65 views

CVE-2019-4329

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 uses incomplete blacklisting for input validation which allows attackers to bypass application controls resulting in direct impact to the system and data integrity. IBM X-Force ID: 161209.

4.3CVSS4.5AI score0.00141EPSS

CVE•added 2019/10/29 12:15 a.m.•62 views

CVE-2019-4330

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session. IBM X-Force ID: 161210.

4.3CVSS4.3AI score0.00287EPSS

CVE•added 2018/05/29 1:29 p.m.•33 views

CVE-2017-1768

IBM Security Guardium Big Data Intelligence (SonarG) 3.1 generates an error message that includes sensitive information about its environment, users, or associated data. IBM X-Force ID: 136471.

4.3CVSS4.3AI score0.00231EPSS

CVE•added 2018/05/29 1:29 p.m.•30 views

CVE-2018-1369

IBM Security Guardium Big Data Intelligence (SonarG) 3.1 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 137767.

4.3CVSS3.8AI score0.00163EPSS