Ibm Infosphere Guardium — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Infosphere Guardium, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2012-3336 — CVSS 8.8 (high): IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL…
CVE-2013-0490 — CVSS 7.2 (high): Unspecified vulnerability in IBM InfoSphere Guardium S-TAP 8.1 for DB2 on z/OS allows local users to gain privileges via unknown vectors.
CVE-2012-3309 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in the account-creation panel in IBM InfoSphere Guardium 8.2 and earlier, when the CSRF…
CVE-2012-3341 — CVSS 5.4 (medium): IBM InfoSphere Guardium 7.0, 8.0, 8.01, and 8.2 is vulnerable to cross-site scripting, caused by improper validation of user-supplied…
CVE-2012-3337 — CVSS 5.3 (medium): IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to traverse directories on the system. An attacker could send a…
CVE-2012-3338 — CVSS 5.3 (medium): IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to bypass security restrictions, caused by improper restrictions…
CVE-2012-3312 — CVSS 5.0 (medium): The datasource definition editor in IBM InfoSphere Guardium 8.2 and earlier, when the save-password setting is enabled, transmits cleartext…
CVE-2012-3340 — CVSS 4.3 (medium): IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to XML external entity injection, caused by improper validation of user-supplied…