Input Validation Flaw in IBM Security Guardium Big Data Intelligence
CVE-2019-4329
4.3MEDIUM
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 29 October 2019
Summary
IBM Security Guardium Big Data Intelligence (SonarG) 4.0 contains a vulnerability due to incomplete blacklisting for input validation. This flaw may allow attackers to bypass certain application controls, potentially compromising system integrity and the integrity of stored data. It is imperative to assess any impact this vulnerability could have on organizational security and data management.
Affected Version(s)
Security Guardium Big Data Intelligence 4
References
CVSS V3.1
Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved