← back
CVE-2019-4338

CVE-2019-4338

CVSS 7.5 HIGHEPSS 1.7%
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.5EPSS 1.7%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
20 Aug 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Security Guardium Big Data Intelligence 4.0 (SonarG) does not properly restrict the size or amount of resources that are requested or influenced by an actor. This weakness can be used to consume more resources than intended. IBM X-Force ID: 161417.
CVSS:3.0/A:H/I:N/PR:N/UI:N/AV:N/C:N/AC:L/S:U/RL:O/RC:C/E:U
Affected products
IBM · Security Guardium Big Data Intelligence

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/161417https://www.ibm.com/support/docview.wss?uid=ibm10960858