Known Vulnerabilities
CVE-2024-49336
IBM Security Guardium 11.5 and 12.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.
MEDIUM
CVSS 6.5
Published Dec 19, 2024
CVE-2022-43906
IBM Security Guardium 11.5 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie. IBM X-Force ID: 240897.
LOW
CVSS 3.1
Published Oct 04, 2023
CVE-2023-0041
IBM Security Guardium 11.5 could allow a user to take over another user's session due to insufficient session expiration. IBM X-Force ID: 243657.
MEDIUM
CVSS 6.3
Published Jun 05, 2023