There is a potential denial of service vulnerability in IBM Decision Optimization for Watson Studio Local
CVEID:CVE-2019-5428
**DESCRIPTION:*Node.js jQuery module is vulnerable to a denial of service, caused by a prototype pollution flaw. By sending a specially-crafted request to inject properties on Object.prototype, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base Score: 5.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/160026> for the current score
CVSS Environmental Score: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Affected Watson Studio (Decision Optimization) | Affected Versions |
---|---|
IBM Decision Optimization for Watson Studio Local | 1.2.3.x and and earlier releases |
Node.js jQuery module v3.4.0 and subsequent releases
You are strongly encourage to upgrade to IBM Decision Optimization for Watson Studio Local 1.2.3.2
None