CVE-2019-4306

MEDIUM

IBM Security Guardium Big Data Intelligence - Info Disclosure

Title source: llm

Description

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 specifies permissions for a security-critical resource which could lead to the exposure of sensitive information or the modification of that resource by unintended parties. IBM X-Force ID: 160986.

References (2)

[VDB Entry, Vendor Advisory] https://exchange.xforce.ibmcloud.com/vulnerabilities/160986

[Patch, Vendor Advisory] https://www.ibm.com/support/pages/node/1096396

Scores

CVSS v3 6.5

EPSS 0.0018

EPSS Percentile 39.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Classification

CWE

CWE-668

Status published

Affected Products (1)

ibm/security_guardium_big_data_intelligence

Timeline

Published Oct 29, 2019

Tracked Since Feb 18, 2026