CVE-2017-1122IBM Security Guardium vulnerability

4 documents4 sources
Severity
7.4HIGHNVD
EPSS
0.0%
top 84.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Security Guardium
Timeline
PublishedApr 20
Latest updateMay 13

Description

IBM Security Guardium 8.2, 9.0, and 10.0 contains a vulnerability that could allow a local attacker with CLI access to inject arbitrary commands which would be executed as root. IBM X-Force ID: 121174.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 1.4 | Impact: 5.9

Affected Packages2 packages

CVEListV5ibm/security_guardium8.2, 9.0, 9.1, 10.0, 10, 9.5, 10.0.1, 10.1, 10.1.2
NVDibm/security_guardium8 versions+7

🔴Vulnerability Details

2
GHSA
GHSA-4q97-g4xv-35c8: IBM Security Guardium 82022-05-13
CVEList
CVE-2017-1122: IBM Security Guardium 82017-04-20

💬Community

1
Bugzilla
CVE-2017-8284 QEMU: privilege escalation via disas_insn function in TCG mode2019-11-07
CVE-2017-1122 — IBM Security Guardium vulnerability | cvebase