Vulnerabilities > CVE-2019-4306 - Exposure of Resource to Wrong Sphere vulnerability in IBM Security Guardium BIG Data Intelligence 4.0

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

ibm

CWE-668

NVD

Published: 2019-10-29

Updated: 2023-02-03

Summary

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 specifies permissions for a security-critical resource which could lead to the exposure of sensitive information or the modification of that resource by unintended parties. IBM X-Force ID: 160986.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Security Guardium BIG Data Intelligence 4.0	1

Common Weakness Enumeration (CWE)

CWE-668 - Exposure of Resource to Wrong Sphere

References

https://www.ibm.com/support/pages/node/1096396
https://exchange.xforce.ibmcloud.com/vulnerabilities/160986