Description
IBM Guardium Data Protection 12.1 is vulnerable to stored cross-site scripting. This vulnerability allows an administrative user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Published: 2026-04-22
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Stored Cross‑Site Scripting
Action: Patch
AI Analysis

Impact

The vulnerability is a stored cross‑site scripting flaw that allows an administrative user to embed arbitrary JavaScript within the Guardium Web UI. This can alter the intended functionality of the interface and potentially lead to credential disclosure while the attacker operates within a trusted session. The weakness is an instance of improper input handling, categorized as CWE‑79.

Affected Systems

IBM Guardium Data Protection version 12.1 running on Linux. The affected application is the web interface component that permits administrators to enter custom scripts.

Risk and Exploitability

The CVSS score of 5.5 indicates moderate severity, and the EPSS score of less than 1% suggests a low likelihood of exploitation. It is not listed in the CISA KEV catalog. Attackers must be authenticated as administrators and have write access to the UI configuration to inject malicious code. Once achieved, the injected script runs with the privileges of the victim session, potentially compromising credentials stored in that session.

Generated by OpenCVE AI on April 28, 2026 at 20:40 UTC.

Remediation

Vendor Solution

IBM encourages customers to update their systems promptly.  ProductVersions FixIBM Guardium Data Protection12.1 https://www.ibm.com/support/fixcentral/swg/quickorder?parent=IBM%20Security&product=ibm/Information+Management/InfoSphere+Guardium&release=12.1&platform=Linux&function=fixId&fixids=SqlGuard-12.0p140_Bundle&includeSupersedes=0&source=fc

OpenCVE Recommended Actions

  • Update IBM Guardium Data Protection to the latest 12.1 release that contains the stored XSS fix.
  • Remove or neutralize any existing custom JavaScript code from the web interface after the update.
  • Restrict administrative privileges to a minimum set of trusted users and monitor for unauthorized script entries.

Generated by OpenCVE AI on April 28, 2026 at 20:40 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 23 Apr 2026 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 22 Apr 2026 23:30:00 +0000

Type Values Removed Values Added
Description IBM Guardium Data Protection 12.1 is vulnerable to stored cross-site scripting. This vulnerability allows an administrative user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Title IBM Guardium Data Protection is affected by multiple vulnerabilities
First Time appeared Ibm
Ibm guardium Data Protection
Weaknesses CWE-79
CPEs cpe:2.3:a:ibm:guardium_data_protection:12.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:guardium_data_protection:12.1:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm guardium Data Protection
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N'}

Subscriptions

Ibm Guardium Data Protection
cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published:

Updated: 2026-04-30T21:41:27.314Z

Reserved: 2026-03-26T17:42:59.745Z

Link: CVE-2026-4918

cve-icon Vulnrichment

Updated: 2026-04-23T12:50:54.595Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-23T00:16:46.443

Modified: 2026-04-27T18:13:02.147

Link: CVE-2026-4918

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T20:45:16Z

Weaknesses