CVE-2019-4338

7.5HIGH

Key Information:

Vendor: IBM
Status: Security Guardium Big Data Intelligence
Vendor: CVE Published:; 20 August 2019

Summary

IBM Security Guardium Big Data Intelligence 4.0 (SonarG) does not properly restrict the size or amount of resources that are requested or influenced by an actor. This weakness can be used to consume more resources than intended. IBM X-Force ID: 161417.

Affected Version(s)

Security Guardium Big Data Intelligence 4.0

References

https://www.ibm.com/support/docview.wss?uid=ibm10960858

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/161417

vdb-entryx_refsource_XF

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 20, 2019
Vulnerability Reserved
Jan 3, 2019