Unrated severityNVD Advisory· Published Mar 21, 2023· Updated Feb 26, 2025
IBM Security Key Lifecycle Manager SQL injection
CVE-2023-25684
Description
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 247597.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
23.0, 3.0.1, 4.0, 4.1, 4.1.1+ 1 more
- (no CPE)range: 3.0, 3.0.1, 4.0, 4.1, 4.1.1
- (no CPE)range: 3.0, 3.0.1, 4.0, 4.1, 4.1.1
Patches
Vulnerability mechanics
References
2- www.ibm.com/support/pages/node/6962729mitrevendor-advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/247597mitrevdb-entry
News mentions
0No linked articles in our index yet.