CVE-2019-4691 - IBM Guardium For Cloud Key Management and IBM Guardium Data Encryption

Moderate 5.4

IBM Security Guardium Data Encryption (GDE) 3.0.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 171828.

Affected software

IBM Guardium For Cloud Key Management

IBM Guardium Data Encryption

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.