CVE-2023-42004: 
IBM Guardium Appliance vulnerability analysis and mitigation

IBM Security Guardium versions 11.3, 11.4, 11.5, and 12.0 are affected by a CSV injection vulnerability (CVE-2023-42004). The vulnerability was discovered and reported by Hamed Ashraf from Asiacell Cyber Security VAPT team. The issue was first published on November 27, 2023, and allows remote attackers to execute malicious commands due to improper validation of CSV file contents (IBM Advisory).

The vulnerability has been assigned a CVSS Base Score of 8.0 HIGH with the vector CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H. This indicates that the vulnerability requires network access, low attack complexity, low privileges, and user interaction. The scope is unchanged, but the potential impact on confidentiality, integrity, and availability is high (NVD).

A successful exploitation of this vulnerability could allow an attacker to execute malicious commands through CSV injection, potentially leading to high impacts on system confidentiality, integrity, and availability. The vulnerability affects the core functionality of IBM Security Guardium's CSV handling capabilities (IBM Advisory).

IBM has released security patches for all affected versions. Users are strongly encouraged to update their systems with the following fixes: For version 11.3: SqlGuard11.0p6301October-Security-PatchV11.3, for version 11.4: SqlGuard11.0p6401October-Security-PatchV11.4, for version 11.5: SqlGuard11.0p6501October-Security-PatchV11.5, and for version 12.0: SqlGuard12.0p6002November-Security-PatchV12.0. No workarounds are available for this vulnerability (IBM Advisory).