Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
IbmSecurity Guardium11.4

19 matches found

CVE
CVEā€¢added 2023/08/27 11:15 p.m.ā€¢71 views

CVE-2022-43909

IBM Security Guardium 11.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 240905.

5.4CVSS4.7AI score0.00135EPSS
CVE
CVEā€¢added 2023/08/27 11:15 p.m.ā€¢71 views

CVE-2023-30435

IBM Security Guardium 11.3, 11.4, and 11.5 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: ...

8.9CVSS5.4AI score0.001EPSS
CVE
CVEā€¢added 2023/08/27 11:15 p.m.ā€¢69 views

CVE-2023-30437

IBM Security Guardium 11.3, 11.4, and 11.5 could allow an unauthorized user to enumerate usernames by sending a specially crafted HTTP request. IBM X-Force ID: 252293.

5.3CVSS5.1AI score0.00103EPSS
CVE
CVEā€¢added 2022/12/20 9:15 p.m.ā€¢63 views

CVE-2022-39166

IBM Security Guardium 11.4 could allow a privileged user to obtain sensitive information inside of an HTTP response. IBM X-Force ID: 235405.

4.9CVSS4.3AI score0.00047EPSS
CVE
CVEā€¢added 2023/08/27 11:15 p.m.ā€¢63 views

CVE-2023-33852

IBM Security Guardium 11.4 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 257614.

7.6CVSS6AI score0.00058EPSS
CVE
CVEā€¢added 2023/08/28 12:15 a.m.ā€¢60 views

CVE-2022-43904

IBM Security Guardium 11.3 and 11.4 could disclose sensitive information to an attacker due to improper restriction of excessive authentication attempts. IBM X-Force ID: 240895.

7.5CVSS7.3AI score0.00082EPSS
CVE
CVEā€¢added 2023/08/27 11:15 p.m.ā€¢60 views

CVE-2023-30436

IBM Security Guardium 11.3, 11.4, and 11.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 252292.

5.5CVSS5.2AI score0.00096EPSS
CVE
CVEā€¢added 2024/05/14 1:56 p.m.ā€¢58 views

CVE-2023-47709

IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 271524.

9.1CVSS7.2AI score0.00294EPSS
CVE
CVEā€¢added 2024/05/14 1:56 p.m.ā€¢58 views

CVE-2023-47712

IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a local user to gain elevated privileges on the system due to improper permissions control. IBM X-Force ID: 271527.

7.8CVSS6.4AI score0.00015EPSS
CVE
CVEā€¢added 2023/08/27 11:15 p.m.ā€¢57 views

CVE-2022-43907

IBM Security Guardium 11.4 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 240901.

8.8CVSS7.9AI score0.00101EPSS
CVE
CVEā€¢added 2023/08/16 10:15 p.m.ā€¢55 views

CVE-2023-35893

IBM Security Guardium 10.6, 11.3, 11.4, and 11.5 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 258824.

9.9CVSS8.9AI score0.00201EPSS
CVE
CVEā€¢added 2024/05/14 1:56 p.m.ā€¢55 views

CVE-2023-47711

IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow an authenticated user to upload files that would cause a denial of service. IBM X-Force ID: 271526.

6.5CVSS6.2AI score0.00036EPSS
CVE
CVEā€¢added 2023/11/28 11:15 a.m.ā€¢54 views

CVE-2023-42004

IBM Security Guardium 11.3, 11.4, and 11.5 is potentially vulnerable to CSV injection. A remote attacker could execute malicious commands due to improper validation of csv file contents. IBM X-Force ID: 265262.

8.8CVSS8.2AI score0.00121EPSS
CVE
CVEā€¢added 2022/11/03 8:15 p.m.ā€¢52 views

CVE-2021-39077

IBM Security Guardium 10.5, 10.6, 11.0, 11.1, 11.2, 11.3, and 11.4 stores user credentials in plain clear text which can be read by a local privileged user. IBM X-Force ID: 215587.

4.4CVSS4.2AI score0.00009EPSS
CVE
CVEā€¢added 2023/06/15 1:15 a.m.ā€¢52 views

CVE-2022-22307

IBM Security Guardium 11.3, 11.4, and 11.5 could allow a local user to obtain elevated privileges due to incorrect authorization checks. IBM X-Force ID: 216753.

7.8CVSS5.2AI score0.0002EPSS
CVE
CVEā€¢added 2023/09/05 12:15 a.m.ā€¢52 views

CVE-2022-43903

IBM Security Guardium 10.6, 11.3, and 11.4 could allow an authenticated user to cause a denial of service due to due to improper input validation. IBM X-Force ID: 240894.

6.5CVSS5.2AI score0.00035EPSS
CVE
CVEā€¢added 2022/06/29 4:15 p.m.ā€¢51 views

CVE-2021-39074

IBM Security Guardium 11.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

6.1CVSS5.8AI score0.00131EPSS
CVE
CVEā€¢added 2024/05/24 12:15 p.m.ā€¢49 views

CVE-2023-47710

IBM Security Guardium 11.4, 11.5, and 12.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 271525.

5.4CVSS5.2AI score0.00081EPSS
CVE
CVEā€¢added 2025/04/09 2:15 p.m.ā€¢49 views

CVE-2025-25023

IBM Security Guardium 11.4 and 12.1 could allow a privileged user to read any file on the system due to incorrect privilege assignment.

4.9CVSS4.9AI score0.00037EPSS