CVE-2017-1597
5.9
CVSS:3.0/A:N/AC:H/AV:N/C:H/I:N/PR:N/S:U/UI:N/E:U/RC:C/RL:O
Summary
IBM Security Guardium 10.0, 10.0.1, 10.1, 10.1.2, 10.1.3, 10.1.4, and 10.5 Database Activity Monitor does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 132610.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | Security Guardium | 10.0 | affected |
| IBM | Security Guardium | 10.0.1 | affected |
| IBM | Security Guardium | 10.1 | affected |
| IBM | Security Guardium | 10.1.2 | affected |
| IBM | Security Guardium | 10.1.3 | affected |
| IBM | Security Guardium | 10.1.4 | affected |
| IBM | Security Guardium | 10.5 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/106236
- https://www.ibm.com/support/docview.wss?uid=swg22014231
- https://exchange.xforce.ibmcloud.com/vulnerabilities/132610
References
- http://www.securityfocus.com/bid/106236
- https://www.ibm.com/support/docview.wss?uid=swg22014231
- https://exchange.xforce.ibmcloud.com/vulnerabilities/132610
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.