Resource Exhaustion Vulnerability in IBM Security Guardium Big Data Intelligence
CVE-2019-4338

7.5HIGH

Key Information:

Vendor: IBM
Status: Security Guardium Big Data Intelligence
Vendor: CVE Published:; 20 August 2019

Summary

IBM Security Guardium Big Data Intelligence 4.0 (SonarG) has a vulnerability that fails to properly limit the size and quantity of resources requested by users. This allows an attacker to utilize excessive resources, potentially disrupting service availability and degrading system performance. For more details, refer to the IBM support documentation and the IBM X-Force vulnerability database.

Affected Version(s)

Security Guardium Big Data Intelligence 4.0

References

https://www.ibm.com/support/docview.wss?uid=ibm10960858

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/161417

vdb-entryx_refsource_XF

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 20, 2019
Vulnerability Reserved
Jan 3, 2019