Описание
IBM Security Guardium 10.0, 10.0.1, and 10.1 through 10.1.4 Database Activity Monitor does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 132624.
Ссылки
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:security_guardium_database_activity_monitor:10.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:security_guardium_database_activity_monitor:10.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:security_guardium_database_activity_monitor:10.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:security_guardium_database_activity_monitor:10.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:security_guardium_database_activity_monitor:10.1.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:security_guardium_database_activity_monitor:10.1.4:*:*:*:*:*:*:*
EPSS
Процентиль: 65%
0.00502
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-521
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
IBM Security Guardium 10.0, 10.0.1, and 10.1 through 10.1.4 Database Activity Monitor does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 132624.
EPSS
Процентиль: 65%
0.00502
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-521