Ibm: >> Infosphere Guardium >> 8.0.0 Security Vulnerabilities
InfoSphere Guardium aix_ktap module: DoS
CVSS Score
5.5
EPSS Score
0.001
Published
2020-02-10
Cross-site request forgery (CSRF) vulnerability in the account-creation panel in IBM InfoSphere Guardium 8.2 and earlier, when the CSRF filtering (aka csrf_status) feature is disabled, allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts.
CVSS Score
6.8
EPSS Score
0.001
Published
2012-08-29
The datasource definition editor in IBM InfoSphere Guardium 8.2 and earlier, when the save-password setting is enabled, transmits cleartext database credentials, which allows remote attackers to obtain sensitive information by sniffing the network.
CVSS Score
5.0
EPSS Score
0.003
Published
2012-08-29