Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Security Guardium Data Encryption code execution
Vulnerability Description
IBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) 1.10.3)) could allow a remote attacker to execute arbitrary code on the system, caused by an angular template injection flaw. By sending specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 248119.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Vulnerability Type
N/A
Vulnerability Title
IBM Security Guardium Data Encryption 跨站脚本漏洞
Vulnerability Description
IBM Security Guardium Data Encryption是美国国际商业机器(IBM)公司的一个用于保护组织内敏感数据安全性的软件。该软件通过控制对数据库、文件、应用和容器的访问,可以保护位于云环境、虚拟环境、大数据环境和物理环境中的资产。 IBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) )1.10.3 版本存在安全漏洞,该漏洞源于允许远程攻击者在系统上执行由angular 模板注入缺
CVSS Information
N/A
Vulnerability Type
N/A