Every CVE whose affected-product data names Ibm Security Guardium, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (112)
CVE-2017-1253 — CVSS 9.9 (critical): IBM Security Guardium 10.0 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a…
CVE-2023-35893 — CVSS 9.9 (critical): IBM Security Guardium 10.6, 11.3, 11.4, and 11.5 could allow a remote authenticated attacker to execute arbitrary commands on the system by…
CVE-2020-4690 — CVSS 9.8 (critical): IBM Security Guardium 11.3 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound…
CVE-2020-4193 — CVSS 9.8 (critical): IBM Security Guardium 11.1 uses an inadequate account lockout setting that could allow a remote attacker to brute force account…
CVE-2021-20426 — CVSS 9.8 (critical): IBM Security Guardium 11.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound…
CVE-2017-1269 — CVSS 9.8 (critical): IBM Security Guardium 10.0 and 10.1 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which…
CVE-2021-20418 — CVSS 9.8 (critical): IBM Security Guardium 11.2 does not require that users should have strong passwords by default, which makes it easier for attackers to…
CVE-2020-4177 — CVSS 9.8 (critical): IBM Security Guardium 11.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound…
CVE-2023-47709 — CVSS 9.1 (critical): IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a remote authenticated attacker to execute arbitrary commands on the system by…
CVE-2023-30435 — CVSS 8.9 (high): IBM Security Guardium 11.3, 11.4, and 11.5 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary…
CVE-2020-4990 — CVSS 8.8 (high): IBM Security Guardium 11.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow…
CVE-2017-1757 — CVSS 8.8 (high): IBM Security Guardium 10.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow…
CVE-2019-4292 — CVSS 8.8 (high): IBM Security Guardium 10.5 could allow a remote attacker to upload arbitrary files, which could allow the attacker to execute arbitrary…
CVE-2019-4422 — CVSS 8.8 (high): IBM Security Guardium 9.0, 9.5, and 10.6 are vulnerable to a privilege escalation which could allow an authenticated user to change the…
CVE-2020-4180 — CVSS 8.8 (high): IBM Security Guardium 11.1 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a…
CVE-2020-4921 — CVSS 8.8 (high): IBM Security Guardium 10.6 and 11.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which…
CVE-2020-4952 — CVSS 8.8 (high): IBM Security Guardium 11.2 could allow an authenticated user to gain root access due to improper access control. IBM X-Force ID: 192028.
CVE-2016-0249 — CVSS 8.6 (high): SQL injection vulnerability in IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x…
CVE-2022-43910 — CVSS 8.4 (high): IBM Security Guardium 11.3 could allow a local user to escalate their privileges due to improper permission controls. IBM X-Force ID…
CVE-2023-42004 — CVSS 8.0 (high): IBM Security Guardium 11.3, 11.4, and 11.5 is potentially vulnerable to CSV injection. A remote attacker could execute malicious commands…
CVE-2020-4688 — CVSS 7.8 (high): IBM Security Guardium 10.6 and 11.2 could allow a local attacker to execute arbitrary commands on the system as an unprivileged user…
CVE-2016-6065 — CVSS 7.8 (high): IBM Security Guardium Database Activity Monitor appliance could allow a local user to inject commands that would be executed as root.
CVE-2021-20389 — CVSS 7.8 (high): IBM Security Guardium 11.2 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 195770.
CVE-2023-47712 — CVSS 7.8 (high): IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a local user to gain elevated privileges on the system due to improper…
CVE-2016-0247 — CVSS 7.8 (high): IBM Security Guardium 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows local users to obtain…
CVE-2023-33852 — CVSS 7.6 (high): IBM Security Guardium 11.4 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow…
CVE-2022-43904 — CVSS 7.5 (high): IBM Security Guardium 11.3 and 11.4 could disclose sensitive information to an attacker due to improper restriction of excessive…
CVE-2021-20419 — CVSS 7.5 (high): IBM Security Guardium 11.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive…
CVE-2021-39076 — CVSS 7.5 (high): IBM Security Guardium 10.5 and 11.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive…
CVE-2017-1598 — CVSS 7.5 (high): IBM Security Guardium 10.0 Database Activity Monitor uses weaker than expected cryptographic algorithms that could allow an attacker to…
CVE-2021-20427 — CVSS 7.5 (high): IBM Security Guardium 11.2 uses an inadequate account lockout setting that could allow a remote attacker to brute force account…
CVE-2020-4185 — CVSS 7.5 (high): IBM Security Guardium 10.5, 10.6, and 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt…
CVE-2017-1264 — CVSS 7.5 (high): IBM Security Guardium 10.0 does not prove or insufficiently proves that the actors identity is correct which can lead to exposure of…
CVE-2017-1267 — CVSS 7.5 (high): IBM Security Guardium 10.0 and 10.1 processes patches, image backups and other updates without sufficiently verifying the origin and…
CVE-2017-1255 — CVSS 7.5 (high): IBM Security Guardium 10.0, 10.0.1, and 10.1 through 10.1.4 uses weaker than expected cryptographic algorithms that could allow an attacker…
CVE-2017-1271 — CVSS 7.5 (high): IBM Security Guardium 9.0, 9.1, and 9.5 supports interaction between multiple actors and allows those actors to negotiate which algorithm…
CVE-2018-1501 — CVSS 7.5 (high): IBM Security Guardium 10.5, 10.6, and 11.0 could allow an unauthorized user to obtain sensitive information due to missing security…
CVE-2017-1122 — CVSS 7.4 (high): IBM Security Guardium 8.2, 9.0, and 10.0 contains a vulnerability that could allow a local attacker with CLI access to inject arbitrary…
CVE-2020-4184 — CVSS 7.3 (high): IBM Security Guardium 11.2 performs an operation at a privilege level that is higher than the minimum level required, which creates new…
CVE-2021-20385 — CVSS 7.2 (high): IBM Security Guardium 11.2 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a…
CVE-2015-5043 — CVSS 7.2 (high): diag in IBM Security Guardium 8.2 before p6015, 9.0 before p6015, 9.1, 9.5, and 10.0 before p6015 allows local users to obtain root access…
CVE-2021-20557 — CVSS 7.2 (high): IBM Security Guardium 11.2 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially…
CVE-2022-43907 — CVSS 7.2 (high): IBM Security Guardium 11.4 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially…
CVE-2017-1254 — CVSS 7.1 (high): IBM Security Guardium 10.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could…
CVE-2020-4689 — CVSS 6.8 (medium): IBM Security Guardium 11.2 is vulnerable to CVS Injection. A remote privileged attacker could execute arbitrary commands on the system…
CVE-2020-4190 — CVSS 6.7 (medium): IBM Security Guardium 10.6, 11.0, and 11.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its…
CVE-2016-0298 — CVSS 6.5 (medium): Directory traversal vulnerability in IBM Security Guardium Database Activity Monitor 10 before 10.0p100 allows remote authenticated users…
CVE-2020-4307 — CVSS 6.5 (medium): IBM Security Guardium 11.1 could allow an attacker on the same network to gain access to the Solr dashboard and cause a denial of service…
CVE-2024-49336 — CVSS 6.5 (medium): IBM Security Guardium 11.5 and 12.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send…
CVE-2017-1258 — CVSS 6.5 (medium): IBM Security Guardium 10.0 and 10.1 does not perform an authentication check for a critical resource or functionality allowing anonymous…
CVE-2021-20433 — CVSS 6.5 (medium): IBM Security Guardium 11.3 could allow a an authenticated user to obtain sensitive information that could be used in further attacks…
CVE-2023-0041 — CVSS 6.3 (medium): IBM Security Guardium 11.5 could allow a user to take over another user's session due to insufficient session expiration. IBM X-Force ID…
CVE-2018-1498 — CVSS 6.2 (medium): IBM Security Guardium EcoSystem 10.5 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID…
CVE-2017-1262 — CVSS 6.1 (medium): IBM Security Guardium 10.0 is vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using…
CVE-2021-39074 — CVSS 6.1 (medium): IBM Security Guardium 11.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2018-1817 — CVSS 6.1 (medium): IBM Security Guardium 10 and 10.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code…
CVE-2020-4182 — CVSS 6.1 (medium): IBM Security Guardium 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2020-4183 — CVSS 6.1 (medium): IBM Security Guardium 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2021-20386 — CVSS 6.1 (medium): IBM Security Guardium 11.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2016-0246 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in IBM Security Guardium 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1…
CVE-2017-1256 — CVSS 6.1 (medium): IBM Security Guardium 10.0, 10.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code…
CVE-2018-1818 — CVSS 5.9 (medium): IBM Security Guardium 10 and 10.5 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own…
CVE-2017-1268 — CVSS 5.9 (medium): IBM Security Guardium 10 and 10.5 uses a one-way cryptographic hash against an input that should not be reversible, such as a password, but…
CVE-2021-39072 — CVSS 5.9 (medium): IBM Security Guardium 11.3 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP…
CVE-2017-1597 — CVSS 5.9 (medium): IBM Security Guardium 10.0, 10.0.1, 10.1, 10.1.2, 10.1.3, 10.1.4, and 10.5 Database Activity Monitor does not require that users should…
CVE-2017-1596 — CVSS 5.5 (medium): IBM Security Guardium 10.0 Database Activity Monitor could allow a local attacker to obtain highly sensitive information via unspecified…
CVE-2017-1595 — CVSS 5.5 (medium): IBM Security Guardium 10.0 Database Activity Monitor could allow a local attacker to obtain highly sensitive information via unspecified…
CVE-2023-30436 — CVSS 5.5 (medium): IBM Security Guardium 11.3, 11.4, and 11.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary…
CVE-2025-3440 — CVSS 5.5 (medium): IBM Security Guardium 11.5 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary…
CVE-2020-4680 — CVSS 5.4 (medium): IBM Security Guardium 11.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2021-29735 — CVSS 5.4 (medium): IBM Security Guardium 10.5, 10.6, 11.0, 11.1, 11.2, and 11.3 is vulnerable to cross-site scripting. This vulnerability allows users to…
CVE-2021-29773 — CVSS 5.4 (medium): IBM Security Guardium 10.6 and 11.3 could allow a remote authenticated attacker to obtain sensitive information or modify user details…
CVE-2018-1891 — CVSS 5.4 (medium): IBM Security Guardium 10 and 10.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code…
CVE-2018-1889 — CVSS 5.4 (medium): IBM Security Guardium 10.0 and 10.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript…
CVE-2017-1600 — CVSS 5.4 (medium): IBM Security Guardium 10.0 Database Activity Monitor is vulnerable to cross-site scripting. This vulnerability allows users to embed…
CVE-2017-1266 — CVSS 5.4 (medium): IBM Security Guardium 10.0 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified…
CVE-2023-47710 — CVSS 5.4 (medium): IBM Security Guardium 11.4, 11.5, and 12.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary…
CVE-2020-4681 — CVSS 5.4 (medium): IBM Security Guardium 11.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2021-20428 — CVSS 5.3 (medium): IBM Security Guardium 11.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is…
CVE-2020-4186 — CVSS 5.3 (medium): IBM Security Guardium 10.5, 10.6, and 11.1 could disclose sensitive information on the login page that could aid in further attacks against…
CVE-2023-30437 — CVSS 5.3 (medium): IBM Security Guardium 11.3, 11.4, and 11.5 could allow an unauthorized user to enumerate usernames by sending a specially crafted HTTP…
CVE-2020-4187 — CVSS 5.3 (medium): IBM Security Guardium 11.1 could disclose sensitive information on the login page that could aid in further attacks against the system. IBM…
CVE-2020-4188 — CVSS 5.3 (medium): IBM Security Guardium 10.6 and 11.1 may use insufficiently random numbers or values in a security context that depends on unpredictable…
CVE-2025-25023 — CVSS 4.9 (medium): IBM Security Guardium 11.4 and 12.1 could allow a privileged user to read any file on the system due to incorrect privilege assignment.
CVE-2020-4678 — CVSS 4.9 (medium): IBM Security Guardium 11.2 could allow an attacker with admin access to obtain and read files that they normally would not have access to…
CVE-2025-25029 — CVSS 4.9 (medium): IBM Security Guardium 12.0 could allow a privileged user to download any file on the system due to improper escaping of input.
CVE-2020-4679 — CVSS 4.8 (medium): IBM Security Guardium 11.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2022-43909 — CVSS 4.6 (medium): IBM Security Guardium 11.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2020-4191 — CVSS 4.4 (medium): IBM Security Guardium 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive…
CVE-2021-39077 — CVSS 4.4 (medium): IBM Security Guardium 10.5, 10.6, 11.0, 11.1, 11.2, 11.3, and 11.4 stores user credentials in plain clear text which can be read by a local…
CVE-2021-39078 — CVSS 4.4 (medium): IBM Security Guardium 10.5 stores user credentials in plain clear text which can be read by a local privileged user. IBM X-Force ID: 215589.
CVE-2022-22307 — CVSS 4.4 (medium): IBM Security Guardium 11.3, 11.4, and 11.5 could allow a local user to obtain elevated privileges due to incorrect authorization checks…
CVE-2022-39166 — CVSS 4.4 (medium): IBM Security Guardium 11.4 could allow a privileged user to obtain sensitive information inside of an HTTP response. IBM X-Force ID: 235405.
CVE-2023-47717 — CVSS 4.4 (medium): IBM Security Guardium 12.0 could allow a privileged user to perform unauthorized actions that could lead to a denial of service. IBM…
CVE-2025-25026 — CVSS 4.3 (medium): IBM Security Guardium 12.0 could allow an authenticated user to obtain sensitive information due to an incorrect authentication check.
CVE-2022-43903 — CVSS 4.3 (medium): IBM Security Guardium 10.6, 11.3, and 11.4 could allow an authenticated user to cause a denial of service due to due to improper input…
CVE-2025-25025 — CVSS 4.3 (medium): IBM Security Guardium 12.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is…
CVE-2022-43908 — CVSS 4.3 (medium): IBM Security Guardium 11.3 could allow an authenticated user to cause a denial of service due to improper input validation. IBM X-Force ID…
CVE-2016-0242 — CVSS 4.3 (medium): IBM Security Guardium 10.x through 10.1 before p100 allows remote authenticated users to obtain sensitive information by reading an…
CVE-2017-1257 — CVSS 4.3 (medium): IBM Security Guardium 10.0 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on…
CVE-2021-20420 — CVSS 4.3 (medium): IBM Security Guardium 11.2 could disclose sensitive information due to reliance on untrusted inputs that could aid in further attacks…
CVE-2020-4189 — CVSS 4.3 (medium): IBM Security Guardium 11.2 discloses sensitive information in the response headers that could be used in further attacks against the…
CVE-2016-0248 — CVSS 3.7 (low): IBM Security Guardium 9.0 before p700 and 10.0 before p100 allows man-in-the-middle attackers to obtain sensitive query-string information…
CVE-2017-1265 — CVSS 3.7 (low): IBM Security Guardium 10.0, 10.0.1, 10.1, 10.1.2, 10.1.3, 10.1.4, and 10.5 does not validate, or incorrectly validates, a certificate. This…
CVE-2018-1509 — CVSS 3.7 (low): IBM Security Guardium EcoSystem 10.5 does not validate, or incorrectly validates, a certificate.This weakness might allow an attacker to…
CVE-2017-1272 — CVSS 3.7 (low): IBM Security Guardium 10.0 and 10.5 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized…
CVE-2016-0238 — CVSS 3.7 (low): IBM Security Guardium 9.0, 9.1, 9.5, 10.0, and 10.1 transmits sensitive data in cleartext in the query of the request. This could allow an…
CVE-2017-1270 — CVSS 3.3 (low): IBM Security Guardium 10.0 does not renew a session variable after a successful authentication which could lead to session…
CVE-2017-1261 — CVSS 3.3 (low): IBM Security Guardium 10.0 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 124736.
CVE-2022-43906 — CVSS 3.1 (low): IBM Security Guardium 11.5 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie. IBM…
CVE-2023-47711 — CVSS 2.7 (low): IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow an authenticated user to upload files that would cause a denial of service…
CVE-2021-20377 — CVSS 2.7 (low): IBM Security Guardium 11.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is…