Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Security Guardium Data Encryption information disclosure
Vulnerability Description
IBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) 1.10.3)) could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 248133.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
通过错误消息导致的信息暴露
Vulnerability Title
IBM Security Guardium Data Encryption 安全漏洞
Vulnerability Description
IBM Security Guardium Data Encryption是美国国际商业机器(IBM)公司的一个用于保护组织内敏感数据安全性的软件。该软件通过控制对数据库、文件、应用和容器的访问,可以保护位于云环境、虚拟环境、大数据环境和物理环境中的资产。 IBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) )1.10.3 版本存在安全漏洞,该漏洞源于当浏览器中返回详细的技术错误消息时,可能允许远程攻击者
CVSS Information
N/A
Vulnerability Type
N/A