Vulnerabilities > CVE-2012-3340 - XML Entity Expansion vulnerability in IBM Infosphere Guardium 8.0/8.0.1/8.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to XML external entity injection, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vulnerability to obtain sensitive information. IBM X-Force ID: 78291.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |