Vulnerabilities > IBM > Infosphere Guardium > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-01 | CVE-2012-3341 | Cross-site Scripting vulnerability in IBM Infosphere Guardium IBM InfoSphere Guardium 7.0, 8.0, 8.01, and 8.2 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. | 5.4 |
| 2020-09-01 | CVE-2012-3340 | XML Entity Expansion vulnerability in IBM Infosphere Guardium 8.0/8.0.1/8.2 IBM InfoSphere Guardium 8.0, 8.01, and 8.2 is vulnerable to XML external entity injection, caused by improper validation of user-supplied input. | 4.3 |
| 2020-09-01 | CVE-2012-3338 | Improper Input Validation vulnerability in IBM Infosphere Guardium 8.0/8.01/8.2 IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to bypass security restrictions, caused by improper restrictions on the create new user account functionality. | 5.3 |
| 2020-09-01 | CVE-2012-3337 | Path Traversal vulnerability in IBM Infosphere Guardium 8.0/8.01/8.2 IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to traverse directories on the system. | 5.3 |
| 2020-02-10 | CVE-2012-2204 | Unspecified vulnerability in IBM Infosphere Guardium 8.0.0/8.2.0 InfoSphere Guardium aix_ktap module: DoS | 5.5 |