Описание
IBM Guardium Data Encryption (GDE) 4.0.0 and 5.0.0 prepares a structured message for communication with another component, but encoding or escaping of the data is either missing or done incorrectly. As a result, the intended structure of the message is not preserved. IBM X-Force ID: 213865.
Ссылки
- VDB EntryVendor Advisory
- Vendor Advisory
- VDB EntryVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:guardium_data_encryption:4.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:guardium_data_encryption:5.0.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00096
Низкий
3 Low
CVSS3
5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-116
Связанные уязвимости
CVSS3: 5
github
почти 4 года назад
IBM Guardium Data Encryption (GDE) 4.0.0 and 5.0.0 prepares a structured message for communication with another component, but encoding or escaping of the data is either missing or done incorrectly. As a result, the intended structure of the message is not preserved. IBM X-Force ID: 213865.
EPSS
Процентиль: 27%
0.00096
Низкий
3 Low
CVSS3
5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-116