ibm security_guardium の CVE(112 件)

CVE 件数: 112 CPE versions: View versions table

概要

本ページは ibm security_guardium に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。

表示中 120 / 112 CVE 件数
«« 先頭 « 前へ 1 / 6 次へ »
CVE 概要 ソース CVSS 最大値 EPSS(%) 公開 更新
CVE-2025-25029 IBM Security Guardium 12.0 could allow a privileged user to download any file on the system due to improper escaping of input. [email protected] 4.9 0.29% 2025-05-27 2026-06-17
CVE-2025-25026 IBM Security Guardium 12.0 could allow an authenticated user to obtain sensitive information due to an incorrect authentication check. [email protected] 4.3 0.24% 2025-05-27 2026-06-17
CVE-2025-25025 IBM Security Guardium 12.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. [email protected] 4.3 0.29% 2025-05-27 2026-06-17
CVE-2025-3440 IBM Security Guardium 11.5 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. [email protected] 5.5 0.17% 2025-05-15 2026-06-17
CVE-2025-25023 IBM Security Guardium 11.4 and 12.1 could allow a privileged user to read any file on the system due to incorrect privilege assignment. [email protected] 4.9 0.29% 2025-04-09 2026-06-17
CVE-2024-49336 IBM Security Guardium 11.5 and 12.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. [email protected] 6.5 0.21% 2024-12-19 2026-06-17
CVE-2023-47710 IBM Security Guardium 11.4, 11.5, and 12.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 271525. [email protected] 5.4 0.25% 2024-05-24 2026-06-17
CVE-2023-47717 IBM Security Guardium 12.0 could allow a privileged user to perform unauthorized actions that could lead to a denial of service. IBM X-Force ID: 271690. [email protected] 4.4 0.17% 2024-05-16 2026-06-17
CVE-2023-47712 IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a local user to gain elevated privileges on the system due to improper permissions control. IBM X-Force ID: 271527. [email protected] 7.8 0.19% 2024-05-14 2026-06-17
CVE-2023-47711 IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow an authenticated user to upload files that would cause a denial of service. IBM X-Force ID: 271526. [email protected] 2.7 0.68% 2024-05-14 2026-06-17
CVE-2023-47709 IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 271524. [email protected] 9.1 1.04% 2024-05-14 2026-06-17
CVE-2023-42004 IBM Security Guardium 11.3, 11.4, and 11.5 is potentially vulnerable to CSV injection. A remote attacker could execute malicious commands due to improper validation of csv file contents. IBM X-Force ID: 265262. [email protected] 8.0 1.05% 2023-11-28 2026-06-17
CVE-2022-43906 IBM Security Guardium 11.5 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie. IBM X-Force ID: 240897. [email protected] 3.1 0.41% 2023-10-04 2026-06-17
CVE-2022-43903 IBM Security Guardium 10.6, 11.3, and 11.4 could allow an authenticated user to cause a denial of service due to due to improper input validation. IBM X-Force ID: 240894. [email protected] 4.3 0.61% 2023-09-04 2026-06-17
CVE-2022-43904 IBM Security Guardium 11.3 and 11.4 could disclose sensitive information to an attacker due to improper restriction of excessive authentication attempts. IBM X-Force ID: 240895. [email protected] 7.5 0.67% 2023-08-27 2026-06-17
CVE-2023-33852 IBM Security Guardium 11.4 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 257614. [email protected] 7.6 0.43% 2023-08-27 2026-06-17
CVE-2023-30437 IBM Security Guardium 11.3, 11.4, and 11.5 could allow an unauthorized user to enumerate usernames by sending a specially crafted HTTP request. IBM X-Force ID: 252293. [email protected] 5.3 0.52% 2023-08-27 2026-06-17
CVE-2023-30436 IBM Security Guardium 11.3, 11.4, and 11.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 252292. [email protected] 5.5 0.29% 2023-08-27 2026-06-17
CVE-2023-30435 IBM Security Guardium 11.3, 11.4, and 11.5 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 252291. [email protected] 8.9 0.36% 2023-08-27 2026-06-17
CVE-2022-43909 IBM Security Guardium 11.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 240905. [email protected] 4.6 0.32% 2023-08-27 2026-06-17
«« 先頭 « 前へ 1 / 6 次へ »
cvelogic Threat Intelligence