First published: Sat Oct 22 2016(Updated: )
IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 does not enable the HSTS protection mechanism, which makes it easier for remote attackers to obtain sensitive information by leveraging use of HTTP.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Security Guardium Database Activity Monitor | =8.2 | |
IBM Security Guardium Database Activity Monitor | =9.0 | |
IBM Security Guardium Database Activity Monitor | =9.1 | |
IBM Security Guardium Database Activity Monitor | =9.5 | |
IBM Security Guardium Database Activity Monitor | =10.0 | |
IBM Security Guardium Database Activity Monitor | =10.1 | |
IBM Security Guardium Database Activity Monitor | =10.01 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.