Description
IBM Guardium Data Protection 12.1 is vulnerable to cross-site scripting. This vulnerability allows an administrative user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Published: 2026-04-22
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Cross‑Site Scripting leading to credential disclosure within a trusted session
Action: Apply Patch
AI Analysis

Impact

IBM Guardium Data Protection 12.1 contains a cross‑site scripting flaw that permits an administrative user to embed arbitrary JavaScript into the web user interface. This flaw can change how the interface behaves or display false information and thus can cause the accidental disclosure of credentials or other sensitive data that the user holds within the same trusted session.

Affected Systems

The vulnerability is limited to IBM Guardium Data Protection version 12.1. The Security Fix Bundle identified as SqlGuard‑12.0p140_Bundle addresses the flaw and is available from IBM’s support site for this major release.

Risk and Exploitability

The CVSS score of 4.8 indicates a medium severity impact. The EPSS score of less than 1% signals that exploitation is considered unlikely at present and the flaw is not listed in the CISA KEV catalog. Because an attacker would need administrative credentials to inject the script, the risk is confined to users who can log into the privileged web console and is therefore limited to a local or authenticated attack vector.

Generated by OpenCVE AI on April 28, 2026 at 15:14 UTC.

Remediation

Vendor Solution

IBM encourages customers to update their systems promptly.  ProductVersions FixIBM Guardium Data Protection12.1 https://www.ibm.com/support/fixcentral/swg/quickorder?parent=IBM%20Security&product=ibm/Information+Management/InfoSphere+Guardium&release=12.1&platform=Linux&function=fixId&fixids=SqlGuard-12.0p140_Bundle&includeSupersedes=0&source=fc

OpenCVE Recommended Actions

  • Apply the IBM Guardium Data Protection 12.1 security patch identified as SqlGuard‑12.0p140_Bundle from IBM’s support site.
  • Limit access to the web UI to only verified administrators and enforce least‑privilege principles for all administrative accounts.
  • If custom JavaScript or extensions are required in the UI, validate and sanitize inputs to prevent script injection.

Generated by OpenCVE AI on April 28, 2026 at 15:14 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 23 Apr 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 22 Apr 2026 23:30:00 +0000

Type Values Removed Values Added
Description IBM Guardium Data Protection 12.1 is vulnerable to cross-site scripting. This vulnerability allows an administrative user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Title IBM Guardium Data Protection is affected by multiple vulnerabilities
First Time appeared Ibm
Ibm guardium Data Protection
Weaknesses CWE-79
CPEs cpe:2.3:a:ibm:guardium_data_protection:12.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:guardium_data_protection:12.1:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm guardium Data Protection
References
Metrics cvssV3_1

{'score': 4.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N'}

Subscriptions

Ibm Guardium Data Protection
cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published:

Updated: 2026-04-23T13:56:47.605Z

Reserved: 2026-03-26T17:43:00.577Z

Link: CVE-2026-4919

cve-icon Vulnrichment

Updated: 2026-04-23T13:56:43.673Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-23T00:16:46.590

Modified: 2026-04-27T18:11:52.273

Link: CVE-2026-4919

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T15:15:34Z

Weaknesses