Security Guardium Database Activity Monitor@10.1 Security Vulnerabilities and Issues — Security Guardium Database Activity Monitor@10.1 CVE List

Lucene search

IbmSecurity Guardium Database Activity Monitor10.1

5 matches found

CVE•added 2016/10/21 5:59 p.m.•164 views

CVE-2016-0236

IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows remote authenticated users to execute arbitrary commands with root privileges via the search field.

9CVSS8.7AI score0.02993EPSS

CVE•added 2016/10/22 3:59 a.m.•51 views

CVE-2016-0240

IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 does not enable the HSTS protection mechanism, which makes it easier for remote attackers to obtain sensitive information by leveraging use of HTTP.

4.3CVSS3.9AI score0.00171EPSS

CVE•added 2018/05/02 1:29 p.m.•32 views

CVE-2017-1601

IBM Security Guardium 10.0, 10.0.1, and 10.1 through 10.1.4 Database Activity Monitor does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 132624.

9.8CVSS8.9AI score0.0063EPSS

CVE•added 2016/10/22 3:59 a.m.•28 views

CVE-2016-0241

IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows remote authenticated users to spoof administrator accounts by sending a modified login request over HTTP.

8.8CVSS8.1AI score0.00569EPSS

CVE•added 2016/10/22 3:59 a.m.•25 views

CVE-2016-0328

IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows local users to obtain administrator privileges for command execution via unspecified vectors.

7.8CVSS7.3AI score0.00144EPSS