Search Results | AttackerKB

Show filters

Topics 30 Users 9,728

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

30 Total Results

Displaying 21-30 of 30

Attacker Value

Unknown

CVE-2017-1122

Disclosure Date: April 20, 2017 (last updated November 26, 2024)

IBM Security Guardium 8.2, 9.0, and 10.0 contains a vulnerability that could allow a local attacker with CLI access to inject arbitrary commands which would be executed as root. IBM X-Force ID: 121174.

0

Attacker Value

Unknown

CVE-2016-6065

Disclosure Date: February 01, 2017 (last updated November 25, 2024)

IBM Security Guardium Database Activity Monitor appliance could allow a local user to inject commands that would be executed as root.

0

Attacker Value

Unknown

CVE-2016-0242

Disclosure Date: October 22, 2016 (last updated November 25, 2024)

IBM Security Guardium 10.x through 10.1 before p100 allows remote authenticated users to obtain sensitive information by reading an Application Error message.

0

Attacker Value

Unknown

CVE-2016-0328

Disclosure Date: October 22, 2016 (last updated November 25, 2024)

IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows local users to obtain administrator privileges for command execution via unspecified vectors.

0

Attacker Value

Unknown

CVE-2016-0247

Disclosure Date: October 22, 2016 (last updated November 25, 2024)

IBM Security Guardium 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows local users to obtain sensitive cleartext information via unspecified vectors, as demonstrated by password information.

0

Attacker Value

Unknown

CVE-2016-0240

Disclosure Date: October 22, 2016 (last updated November 25, 2024)

IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 does not enable the HSTS protection mechanism, which makes it easier for remote attackers to obtain sensitive information by leveraging use of HTTP.

0

Attacker Value

Unknown

CVE-2016-0241

Disclosure Date: October 22, 2016 (last updated November 25, 2024)

IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows remote authenticated users to spoof administrator accounts by sending a modified login request over HTTP.

0

Attacker Value

Unknown

CVE-2016-0246

Disclosure Date: October 22, 2016 (last updated November 25, 2024)

Cross-site scripting (XSS) vulnerability in IBM Security Guardium 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

0

Attacker Value

Unknown

CVE-2016-0236

Disclosure Date: October 21, 2016 (last updated November 25, 2024)

IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows remote authenticated users to execute arbitrary commands with root privileges via the search field.

0

Attacker Value

Unknown

CVE-2016-0249

Disclosure Date: October 16, 2016 (last updated November 25, 2024)

SQL injection vulnerability in IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

0