Security Guardium@12.0 Security Vulnerabilities and Issues — Security Guardium@12.0 CVE List

Lucene search

IbmSecurity Guardium12.0

10 matches found

CVE•added 2024/05/16 6:15 p.m.•83 views

CVE-2023-47717

IBM Security Guardium 12.0 could allow a privileged user to perform unauthorized actions that could lead to a denial of service. IBM X-Force ID: 271690.

4.4CVSS6.2AI score0.00038EPSS

CVE•added 2024/05/14 1:56 p.m.•58 views

CVE-2023-47709

IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 271524.

9.1CVSS7.2AI score0.00294EPSS

CVE•added 2024/05/14 1:56 p.m.•58 views

CVE-2023-47712

IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a local user to gain elevated privileges on the system due to improper permissions control. IBM X-Force ID: 271527.

7.8CVSS6.4AI score0.00015EPSS

CVE•added 2024/05/14 1:56 p.m.•55 views

CVE-2023-47711

IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow an authenticated user to upload files that would cause a denial of service. IBM X-Force ID: 271526.

6.5CVSS6.2AI score0.00036EPSS

CVE•added 2024/05/24 12:15 p.m.•49 views

CVE-2023-47710

IBM Security Guardium 11.4, 11.5, and 12.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 271525.

5.4CVSS5.2AI score0.00081EPSS

CVE•added 2024/12/19 6:15 p.m.•47 views

CVE-2024-49336

IBM Security Guardium 11.5 and 12.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.

6.5CVSS5.8AI score0.00042EPSS

CVE•added 2025/05/28 2:15 a.m.•46 views

CVE-2025-25026

IBM Security Guardium 12.0 could allow an authenticated user to obtain sensitive information due to an incorrect authentication check.

4.3CVSS4.4AI score0.00039EPSS

CVE•added 2025/05/28 2:15 a.m.•42 views

CVE-2025-25025

IBM Security Guardium 12.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.

5.3CVSS4.3AI score0.0004EPSS

CVE•added 2025/05/28 2:15 a.m.•42 views

CVE-2025-25029

IBM Security Guardium 12.0 could allow a privileged user to download any file on the system due to improper escaping of input.

6.5CVSS4.9AI score0.00034EPSS

CVE•added 2025/05/15 4:15 p.m.•23 views

CVE-2025-3440

IBM Security Guardium 11.5 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

5.5CVSS6.1AI score0.00037EPSS