CVE-2017-1261Sensitive Information Exposure in IBM Security Guardium

CWE-200Sensitive Information Exposure4 documents4 sources
Severity
3.3LOWNVD
EPSS
0.0%
top 85.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Security Guardium
Timeline
PublishedDec 20
Latest updateMay 14

Description

IBM Security Guardium 10.0 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 124736.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/security_guardium5 versions+4
NVDibm/security_guardium5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-pg9x-qcvf-c6vh: IBM Security Guardium 102022-05-14
CVEList
CVE-2017-1261: IBM Security Guardium 102017-12-20

💥Exploits & PoCs

1
Exploit-DB
Microsoft MsMpEng - Multiple Crashes While Scanning Malformed Files2017-05-29
CVE-2017-1261 — Sensitive Information Exposure in IBM | cvebase