PT-2018-12069 · Ibm · Ibm Security Guardium Database Activity Monitor
Published
2018-02-09
·
Updated
2019-10-03
·
CVE-2018-1368
CVSS v3.1
4.4
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Security Guardium Database Activity Monitor versions 9.0 through 9.5
Description
The issue allows a local user with low privileges to view report pages and perform certain actions that are restricted to administrators, posing a risk of unauthorized changes.
Recommendations
For versions 9.0 through 9.5, restrict low-privileged user access to report pages and administrative actions to prevent unauthorized modifications.
Fix
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Security Guardium Database Activity Monitor