Input Validation Flaw in IBM Security Guardium Big Data Intelligence
CVE-2019-4329

4.3MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
29 October 2019

Summary

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 contains a vulnerability due to incomplete blacklisting for input validation. This flaw may allow attackers to bypass certain application controls, potentially compromising system integrity and the integrity of stored data. It is imperative to assess any impact this vulnerability could have on organizational security and data management.

Affected Version(s)

Security Guardium Big Data Intelligence 4

References

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.