Description
IBM Security Guardium 9.0, 9.5, and 10.6 are vulnerable to a privilege escalation which could allow an authenticated user to change the accessmgr password. IBM X-Force ID: 162768.
CVSS breakdown
CVSS 3.0
Availability
High
User Interaction
None
Privileges Required
Low
Attack Complexity
Low
Integrity
High
Attack Vector
Network
Confidentiality
High
Scope
Unchanged
RC
Changed
RL
O
E
Unchanged
Affected products
- ibm / security_guardium9.0 – 9.0
- ibm / security_guardium9.5 – 9.5
- ibm / security_guardium10.6 – 10.6