CVE-2026-1272 LOW

CVE-2026-1272: IBM Guardium Data Protection is affected by multiple vulnerabilities

Vendor Ibm
Product Guardium Data Protection
Weakness CWE-613 · Insufficient session expiration
Published April 22, 2026
Last update April 23, 2026

CVSS base score

2.7/10
Attack vector Network
Attack complexity Low
Privileges required High
User interaction None
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

IBM Guardium Data Protection 12.0, 12.1, and 12.2 is vulnerable to Security Misconfiguration vulnerability in the user access control panel.

Key dates

02Disclosure timeline

April 22, 2026 CVE published
April 23, 2026 Record updated