CVE-2021-20426

Name of the Vulnerable Software and Affected Versions IBM Security Guardium version 11.2

Description The issue is related to hard-coded credentials, such as a password or cryptographic key, used by IBM Security Guardium for its own inbound authentication, outbound communication to external components, or encryption of internal data. This could allow a remote attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations For IBM Security Guardium version 11.2, consider changing the hard-coded credentials to unique, secure values to prevent unauthorized access. As a temporary workaround, restrict access to the system to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.