CVE-2016-0235

CWE-798 — Hard-coded Credentials3 documents3 sources

Severity

8.2HIGH

EPSS

0.0%

top 91.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Security Guardium Database Activity Monitor

Timeline

PublishedMar 12

Latest updateMay 14

Description

IBM Security Guardium Database Activity Monitor 10 allows local users to have unspecified impact by leveraging administrator access to a hardcoded password, related to use on GRUB systems. IBM X-Force ID: 110326.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HExploitability: 1.5 | Impact: 6.0

Affected Packages1 packages

▶NVDibm/security_guardium_database_activity_monitor10.0

🔴Vulnerability Details

GHSA

GHSA-vj36-fqgj-qpxq: IBM Security Guardium Database Activity Monitor 10 allows local users to have unspecified impact by leveraging administrator access to a hardcoded pas↗2022-05-14

▶

CVEList

CVE-2016-0235: IBM Security Guardium Database Activity Monitor 10 allows local users to have unspecified impact by leveraging administrator access to a hardcoded pas↗2018-03-12

▶