Vulnerabilities > IBM > Infosphere Guardium > 8.01
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-01 | CVE-2012-3338 | Improper Input Validation vulnerability in IBM Infosphere Guardium 8.0/8.01/8.2 IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to bypass security restrictions, caused by improper restrictions on the create new user account functionality. | 5.0 |
| 2020-09-01 | CVE-2012-3337 | Path Traversal vulnerability in IBM Infosphere Guardium 8.0/8.01/8.2 IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to traverse directories on the system. | 5.0 |
| 2020-09-01 | CVE-2012-3336 | SQL Injection vulnerability in IBM Infosphere Guardium 8.0/8.01/8.2 IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to SQL injection. | 6.5 |
| 2012-08-29 | CVE-2012-3312 | Cryptographic Issues vulnerability in IBM Infosphere Guardium The datasource definition editor in IBM InfoSphere Guardium 8.2 and earlier, when the save-password setting is enabled, transmits cleartext database credentials, which allows remote attackers to obtain sensitive information by sniffing the network. | 5.0 |
| 2012-08-29 | CVE-2012-3309 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Infosphere Guardium Cross-site request forgery (CSRF) vulnerability in the account-creation panel in IBM InfoSphere Guardium 8.2 and earlier, when the CSRF filtering (aka csrf_status) feature is disabled, allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts. | 6.8 |