CVE-2018-1818

Description

IBM Security Guardium 10 and 10.5 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 150022.

CVSS breakdown

CVSS 3.0

Availability

None

Attack Complexity

High

Attack Vector

Local

Confidentiality

High

Integrity

None

Privileges Required

None

Scope

Changed

User Interaction

None

Unchanged

Changed

Affected products

ibm / security_guardium10 – 10
ibm / security_guardium10.5 – 10.5

References

MISChttps://www.ibm.com/support/docview.wss?uid=ibm10737073
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/150022