CVE-2023-35893: 
IBM Guardium Appliance vulnerability analysis and mitigation

IBM Security Guardium versions 10.6, 11.3, 11.4, and 11.5 were found to contain a command injection vulnerability (CVE-2023-35893). The vulnerability allows remote authenticated attackers to execute arbitrary commands on the affected system by sending specially crafted requests. This critical security flaw was discovered and reported by Michał Bogdanowicz from NORDEA BANK ABP (IBM Security Bulletin).

The vulnerability is classified as an OS Command Injection flaw (CWE-78) due to improper neutralization of special elements used in OS commands. It received a Critical CVSS v3.1 base score of 9.9, with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H, indicating network accessibility, low attack complexity, and high impacts on confidentiality, integrity, and availability (NVD).

If successfully exploited, this vulnerability allows authenticated remote attackers to execute arbitrary commands on the affected IBM Security Guardium system. Given the CVSS metrics, the vulnerability has high potential impact on system confidentiality, integrity, and availability (Cyber Security News).

IBM has released security patches for all affected versions. Users of IBM Security Guardium should update their systems to the following versions: Version 10.6 - SqlGuard10.0p1030BundleOct-03-2023, Version 11.3 - SqlGuard11.0p387Security-Fix, Version 11.4 - SqlGuard11.0p6401October-Security-PatchV11.4, and Version 11.5 - SqlGuard11.0p6501October-Security-Patch_V11.5. No workarounds are available for this vulnerability (IBM Security Bulletin).