Description
IBM Security Guardium 11.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 192710.
CVSS breakdown
CVSS 3.0
Attack Vector
Network
Privileges Required
Low
Confidentiality
High
User Interaction
None
Availability
Low
Attack Complexity
Low
Integrity
Low
Scope
Unchanged
E
Unchanged
RC
Changed
RL
O
Affected products
- ibm / security_guardium11.2 – 11.2