Description
IBM Security Guardium 11.2 is vulnerable to CVS Injection. A remote privileged attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-ForceID: 186696.
CVSS breakdown
CVSS 3.0
User Interaction
Required
Integrity
High
Confidentiality
High
Availability
High
Scope
Unchanged
Privileges Required
High
Attack Complexity
Low
Attack Vector
Network
RC
Changed
E
Unchanged
RL
O
Affected products
- ibm / security_guardium11.2 – 11.2