First published: Wed Aug 23 2023(Updated: )
IBM Security Guardium 11.4 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 257614.
Credit: psirt@us.ibm.com psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Security Guardium | =11.4 | |
IBM Security Guardium | <=11.4 | |
IBM Security Guardium | <=11.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-33852 is high.
IBM Security Guardium 11.4 becomes vulnerable to SQL injection when a remote attacker sends specially crafted SQL statements.
If a remote attacker exploits CVE-2023-33852, they can view, add, modify, or delete information in the back-end database.
To fix the SQL injection vulnerability in IBM Security Guardium 11.4, apply the necessary security patches provided by IBM.
You can find more information about CVE-2023-33852 on the IBM X-Force ID page and the IBM support page.