CVE-2023-30436

Name of the Vulnerable Software and Affected Versions IBM Security Guardium versions 11.3 through 11.5

Description This issue allows users to embed arbitrary JavaScript code in the Web UI, potentially altering the intended functionality and leading to credentials disclosure within a trusted session. The vulnerability enables the embedding of malicious code, which could compromise the security of the system.

Recommendations For IBM Security Guardium versions 11.3 through 11.5, consider disabling the Web UI functionality until a patch is available to prevent potential exploitation. Restrict access to the Web UI to minimize the risk of credentials disclosure.