Описание
IBM Watson Query on Cloud Pak for Data (IBM Data Virtualization 1.8, 2.0, 2.1, 2.2, and 3.0.0) could allow an authenticated user to obtain sensitive information from objects published using Watson Query due to an improper data protection mechanism.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:data_virtualization_on_cloud_pak_for_data:1.8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:data_virtualization_on_cloud_pak_for_data:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:data_virtualization_on_cloud_pak_for_data:4.5.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:data_virtualization_on_cloud_pak_for_data:5.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:4.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:4.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:4.8:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00044
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-497
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 6.5
github
около 1 года назад
IBM Watson Query on Cloud Pak for Data (IBM Data Virtualization 1.8, 2.0, 2.1, 2.2, and 3.0.0) could allow an authenticated user to obtain sensitive information from objects published using Watson Query due to an improper data protection mechanism.
EPSS
Процентиль: 13%
0.00044
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-497
NVD-CWE-noinfo