CVE-2026-8405 - Vulnerability Details

- IBM Guardium Data Protection is affected by Exposure of Sensitive Information vulnerability

Description

IBM Guardium Data Protection 12.2.1, and 12.2.2 's add-on feature of Guardium Data Protection named "Long Term Retention" (LTR) can expose sensitive credentials in debug mode.

Published: 2026-05-27

Score: 6.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability identified as CWE-200 allows an attacker to acquire sensitive credentials from IBM Guardium Data Protection when the Long Term Retention feature is run in debug mode. The bug permits exposure of sensitive information, potentially leading to credential compromise and further access to protected data. The impact is confined to the data exposed by the debug mode and does not grant arbitrary code execution or other higher‑level privileges.

Affected Systems

Guardium Data Protection versions 12.2.1 and 12.2.2 are affected. The exposure occurs via the Long Term Retention (LTR) add‑on feature. Customers running these releases should verify that the LTR debug mode is disabled or apply the vendor‑issued security fixes provided by IBM.

Risk and Exploitability

CVSS score of 6.5 indicates a moderate risk. EPSS score of < 1% indicates a very low exploitation probability. The vulnerability is not listed in the CISA KEV catalog, suggesting no confirmed exploitation in the wild. Based on the description, it is inferred that the attack vector requires privileged access or control over the debug configuration of LTR, and exploitation would be easiest when an attacker can trigger debug mode. Given the moderate CVSS and lack of known exploitation, the threat remains manageable but should be mitigated promptly.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

IBM

Guardium Data Protection

affected

Version	Status	Constraints
`12.2.1`	affected	≤ 4.4.7 Fix Pack 1
`12.2.2`	affected	—

Configuration 1 [-]

OR	cpe:2.3:a:ibm:guardium_data_protection:12.2.1:::::::*
	cpe:2.3:a:ibm:guardium_data_protection:12.2.2:::::::*

No data.

Vendor Product Confidence Versions

Ibm

Guardium Data Protection

95%

Version	Status	Scheme	Platform
`[12.2.1,4.4.7 Fix Pack 1]`	affected	generic	—
`12.2.2`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

Vendor Solution

IBM encourages customers to update their systems promptly. ProductVersions FixIBM Guardium Data Protection12.2.1 https://www.ibm.com/support/fixcentral/swg/quickorder?parent=IBM%20Security&product=ibm/Information+Management/InfoSphere+Guardium&release=12.2&platform=Linux&function=fixId&fixids=SqlGuard_12.0p1039_Security-Fix&includeSupersedes=0&source=fc IBM Guardium Data Protection12.2.2 https://www.ibm.com/support/fixcentral/swg/quickorder?parent=IBM%20Security&product=ibm/Information+Management/InfoSphere+Guardium&release=12.2&platform=Linux&function=fixId&fixids=SqlGuard_12.0p223_Security-Fix&includeSupersedes=0&source=fc

OpenCVE Recommended Actions

Upgrade Guardium Data Protection 12.2.1 or 12.2.2 to the latest patch level using IBM Fix Central.
Disable the debug mode for the Long Term Retention feature to prevent exposure of credentials.
Verify that the debug mode is not enabled in any scheduled jobs or scripts, and remove any residual debug configuration files.

Generated by OpenCVE AI on June 3, 2026 at 05:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00228.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://www.ibm.com/support/pages/node/7273657

History

Wed, 03 Jun 2026 02:30:00 +0000

Type	Values Removed	Values Added
Weaknesses		NVD-CWE-noinfo

Wed, 27 May 2026 16:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 27 May 2026 14:15:00 +0000

Type	Values Removed	Values Added
Description		IBM Guardium Data Protection 12.2.1, and 12.2.2 's add-on feature of Guardium Data Protection named "Long Term Retention" (LTR) can expose sensitive credentials in debug mode.
Title		IBM Guardium Data Protection is affected by Exposure of Sensitive Information vulnerability
First Time appeared		Ibm Ibm guardium Data Protection
Weaknesses		CWE-200
CPEs		cpe:2.3:a:ibm:guardium_data_protection:12.2.1:::::::* cpe:2.3:a:ibm:guardium_data_protection:12.2.2:::::::*
Vendors & Products		Ibm Ibm guardium Data Protection
References		https://www.ibm.com/support/pages/node/7273657
Metrics		cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}`

Subscriptions

Ibm Guardium Data Protection

MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2026-05-27T13:20:52.982Z

Updated: 2026-05-27T15:32:44.905Z

Reserved: 2026-05-12T15:46:00.950Z

Link: CVE-2026-8405

Vulnrichment

Updated: 2026-05-27T15:32:41.340Z

NVD

Status : Analyzed

Published: 2026-05-27T14:17:38.490

Modified: 2026-06-03T01:13:49.717

Link: CVE-2026-8405

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-03T06:00:27Z

Weaknesses

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
NVD-CWE-noinfo

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object