CVE-2021-39074: 
IBM Guardium Appliance vulnerability analysis and mitigation

IBM Security Guardium 11.4 is vulnerable to cross-site scripting (CVE-2021-39074). This vulnerability allows users to embed arbitrary JavaScript code in the Web UI, which could potentially lead to credentials disclosure within a trusted session. The vulnerability was discovered in June 2022 and affects the web interface of IBM Security Guardium (IBM Support).

The vulnerability has been assigned a CVSS Base score of 6.1 with the following vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N. This indicates that the vulnerability is network accessible (AV:N), requires low attack complexity (AC:L), needs no privileges (PR:N), requires user interaction (UI:R), has changed scope (S:C), and can impact both confidentiality and integrity at a low level (C:L/I:L) with no impact on availability (A:N) (IBM Support).

The vulnerability could allow attackers to alter the intended functionality of the web interface and potentially lead to credentials disclosure within a trusted session. The cross-site scripting vulnerability affects the web UI component of the application, potentially compromising user sessions (IBM Support).

IBM has released a fix for this vulnerability and encourages customers to update their systems promptly. The fix is available through IBM Fix Central for IBM Security Guardium 11.4. No workarounds or alternative mitigations are available for this vulnerability (IBM Support).

The vulnerability was discovered and reported by members of the IBM X-Force Ethical Hacking Team, including John Zuccato, Rodney Ryan, Chris Shepherd, Nathan Roane, Vince Dragnea, Troy Fisher, Gabor Minyo, Geoffrey Owden, and Ben Goodspeed (IBM Support).