CVE-2019-4329

4.3MEDIUM

Key Information:

Vendor: IBM
Status: Security Guardium Big Data Intelligence
Vendor: CVE Published:; 29 October 2019

Summary

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 uses incomplete blacklisting for input validation which allows attackers to bypass application controls resulting in direct impact to the system and data integrity. IBM X-Force ID: 161209.

Affected Version(s)

Security Guardium Big Data Intelligence 4

References

https://www.ibm.com/support/pages/node/1096906

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/161209

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 29, 2019
Vulnerability Reserved
Jan 3, 2019