Total
8 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2026-8405 | 1 Ibm | 1 Guardium Data Protection | 2026-06-17 | N/A | 6.5 MEDIUM |
| IBM Guardium Data Protection 12.2.1, and 12.2.2 's add-on feature of Guardium Data Protection named "Long Term Retention" (LTR) can expose sensitive credentials in debug mode. | |||||
| CVE-2026-4919 | 1 Ibm | 1 Guardium Data Protection | 2026-06-17 | N/A | 4.8 MEDIUM |
| IBM Guardium Data Protection 12.1 is vulnerable to cross-site scripting. This vulnerability allows an administrative user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. | |||||
| CVE-2026-4918 | 1 Ibm | 1 Guardium Data Protection | 2026-06-17 | N/A | 5.5 MEDIUM |
| IBM Guardium Data Protection 12.1 is vulnerable to stored cross-site scripting. This vulnerability allows an administrative user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. | |||||
| CVE-2026-4917 | 1 Ibm | 1 Guardium Data Protection | 2026-06-17 | N/A | 4.9 MEDIUM |
| IBM Guardium Data Protection 12.1 could allow an administrative user to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to write arbitrary files on the system. | |||||
| CVE-2026-1274 | 1 Ibm | 1 Guardium Data Protection | 2026-06-17 | N/A | 4.9 MEDIUM |
| IBM Guardium Data Protection 12.0, 12.1, and 12.2 is vulnerable to a Bypass Business Logic vulnerability in the access management control panel. | |||||
| CVE-2026-1272 | 1 Ibm | 1 Guardium Data Protection | 2026-06-17 | N/A | 2.7 LOW |
| IBM Guardium Data Protection 12.0, 12.1, and 12.2 is vulnerable to Security Misconfiguration vulnerability in the user access control panel. | |||||
| CVE-2025-3473 | 1 Ibm | 1 Guardium Data Protection | 2026-06-17 | N/A | 6.7 MEDIUM |
| IBM Security Guardium 12.1 could allow a local privileged user to escalate their privileges to root due to insecure inherited permissions created by the program. | |||||
| CVE-2025-36020 | 1 Ibm | 1 Guardium Data Protection | 2026-06-17 | N/A | 5.9 MEDIUM |
| IBM Guardium Data Protection could allow a remote attacker to obtain sensitive information due to cleartext transmission of sensitive credential information. | |||||