CVE-2017-1272

Name of the Vulnerable Software and Affected Versions: IBM Security Guardium versions 10.0 through 10.5

Description: The issue allows sensitive information to be stored in URL parameters, potentially leading to information disclosure if unauthorized parties gain access to the URLs through server logs, referrer headers, or browser history.

Recommendations: For IBM Security Guardium versions 10.0 through 10.5, consider modifying the application to prevent sensitive information from being stored in URL parameters as a temporary workaround. Restrict access to server logs and ensure proper handling of referrer headers and browser history to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.