Remote User Account Creation Vulnerability in IBM InfoSphere Guardium
CVE-2012-3338

3.7LOW

Key Information:

Vendor: IBM
Status: Infosphere Guardium
Vendor: CVE Published:; 1 September 2020

What is CVE-2012-3338?

A vulnerability in IBM InfoSphere Guardium versions 8.0, 8.01, and 8.2 enables a remote attacker to bypass security restrictions associated with the user account creation functionality. This flaw allows unauthorized users to create unprivileged accounts, potentially leading to further exploitation of the system. Attackers can leverage this vulnerability to escalate their privileges and compromise security, emphasizing the need for immediate attention to safeguard user account management.

Affected Version(s)

InfoSphere Guardium 8.0

InfoSphere Guardium 8.01

InfoSphere Guardium 8.2

References

http://www-01.ibm.com/support/docview.wss?uid=swg21611126

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/78286

vdb-entryx_refsource_XF

CVSS V3.1

Score:

3.7

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 1, 2020
Vulnerability Reserved
Jun 7, 2012