Sensitive Information Exposure in IBM Security Guardium Big Data Intelligence
CVE-2019-4309
5.9MEDIUM
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 29 October 2019
Summary
IBM Security Guardium Big Data Intelligence (SonarG) version 4.0 contains hard coded credentials that could be exploited by local users to access sensitive information. This flaw exposes critical data to unauthorized individuals, highlighting the importance of proper credential management and security practices. For further information, see the IBM support page and X-Force vulnerability description.
Affected Version(s)
Security Guardium Big Data Intelligence 4
References
CVSS V3.1
Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved