VYPR

Security Guardium Big Data Intelligence (SonarG)

by IBM

CVEs (22)

  • CVE-2018-1370MedMay 29, 2018
    risk 0.27cvss 4.2epss 0.01

    IBM Security Guardium Big Data Intelligence (SonarG) 3.1 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 137769.

  • CVE-2018-1369LowMay 29, 2018
    risk 0.24cvss 3.7epss 0.01

    IBM Security Guardium Big Data Intelligence (SonarG) 3.1 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 137767.

Page 2 of 2