Sensitive Information Exposure in IBM Security Guardium by Remote Attackers
CVE-2025-25025

4.3MEDIUM

Key Information:

Vendor

IBM

Vendor
CVE Published:
28 May 2025

What is CVE-2025-25025?

A vulnerability in IBM Security Guardium 12.0 may allow remote attackers to exploit detailed technical error messages shown in the browser, potentially revealing sensitive information. This information can be leveraged to execute further attacks against the system, compromising its integrity and security. It is crucial for users to understand this risk and implement appropriate security measures.

Affected Version(s)

Security Guardium 12.0

References

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-25025 : Sensitive Information Exposure in IBM Security Guardium by Remote Attackers