Security Misconfiguration in IBM Guardium Data Protection User Access Control Panel
CVE-2026-1272

2.7LOW

Key Information:

Vendor: IBM
Status: Guardium Data Protection
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-1272?

IBM Guardium Data Protection versions 12.0, 12.1, and 12.2 experience a security misconfiguration issue in the user access control panel. This vulnerability can lead to unauthorized access or manipulation of sensitive data, making it crucial for users to implement the recommended security patches and configurations to mitigate risk. Users are advised to review the IBM support page for detailed instructions and to apply necessary updates.

Affected Version(s)

Guardium Data Protection 12.0 <= 9.6.0

Guardium Data Protection 12.1

Guardium Data Protection 12.2

References

https://www.ibm.com/support/pages/node/7269445

vendor-advisorypatch

CVSS V3.1

Score:

2.7

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Jan 20, 2026

CVE-2026-1272 Data

JSON