Information Disclosure Vulnerability in IBM Security Guardium Database Activity Monitor
CVE-2016-0237

5.5MEDIUM

Key Information:

Vendor: IBM
Status: Security Guardium Database Activity Monitor
Vendor: CVE Published:; 12 March 2018

What is CVE-2016-0237?

The vulnerability allows local users of IBM Security Guardium Database Activity Monitor 10 to gain unauthorized access to sensitive information by exploiting cached browser data. This potential breach could lead to the exposure of confidential data, highlighting the importance of secure browsing practices and robust user permissions in database security environments. Users are advised to regularly update their systems and monitor access rights to mitigate this risk.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/110328

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21981631

x_refsource_CONFIRM

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 12, 2018
Vulnerability Reserved
Dec 8, 2015