CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

63 matches found

IBM Security Bulletins•added 2026/01/25 11:19 a.m.•6 views

Security Bulletin: Multiple Vulnerabilities affecting IBM Watson Studio in Cloud Pak for Data are addressed

Summary There are multiple vulnerabilities impacting IBM Watson Studio in Cloud Pak for Data. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2025-7647 DESCRIPTION: The llama-index-core package, up to version 0.12.44, contains a...

8.7CVSS5.5AI score0.00164EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/12/05 8:46 a.m.•6 views

Security Bulletin: Multiple Vulnerabilities affect IBM Watson Studio in Cloud Pak for Data.

Summary Multiple vulnerabilities have been addressed in IBM Watson Studio in Cloud Pak for Data version 5.2.2 Vulnerability Details CVEID:CVE-2024-3568 DESCRIPTION: The huggingface/transformers library is vulnerable to arbitrary code execution through deserialization of untrusted data within the...

9.8CVSS9.1AI score0.24427EPSS

Exploits5Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-12261

Malware in sbrugna...

5.3CVSS5.5AI score0.0026EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-13942

Malware in sbrugna...

6.2CVSS6AI score0.00088EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-43398

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00075EPSS

Exploits0References1

RedhatCVE•added 2025/09/26 3:55 p.m.•1 views

CVE-2025-33116

IBM Watson Studio 4.0 through 5.2.0 on Cloud Pak for Data is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

4.4CVSS6.2AI score0.00021EPSS

Exploits0References1

NVD•added 2025/09/25 4:15 p.m.•4 views

CVE-2025-33116

5.4CVSS0.00021EPSS

Exploits0References1

OSV•added 2025/09/25 4:15 p.m.•0 views

CVE-2025-33116

5.4CVSS5.5AI score0.00021EPSS

Exploits0References1

Vulnrichment•added 2025/09/25 3:10 p.m.•1 views

CVE-2025-33116 IBM Watson Studio on Cloud Pak for Data cross-site scripting

4.4CVSS5.8AI score0.00021EPSS

Exploits0References1

CNVD•added 2025/08/31 12:0 a.m.•1 views

IBM Watson Studio on Cloud Pak for Data Cross-Site Scripting Vulnerability

IBM Watson Studio on Cloud Pak for Data is an intelligent search and text analytics platform from International Business Machines IBM. A cross-site scripting vulnerability exists in IBM Watson Studio on Cloud Pak for Data versions 4.0 and 5.0, which stems from the application's lack of effective...

5.4CVSS5.9AI score0.00036EPSS

Exploits0References1

Cvelist•added 2025/08/28 2:9 p.m.•3 views

CVE-2024-49790 IBM Watson Studio on Cloud Pak for Data cross-site scripting

IBM Watson Studio on Cloud Pak for Data 4.0 and 5.0 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessi...

5.4CVSS0.00036EPSS

Exploits0References1

CNNVD•added 2025/08/28 12:0 a.m.•1 views

IBM Watson Studio on Cloud Pak for Data 跨站脚本漏洞

5.4CVSS5.9AI score0.00036EPSS

Exploits0References2

IBM Security Bulletins•added 2025/08/04 12:44 p.m.•3 views

Security Bulletin: Multiple Vulnerabilities affecting IBM Watson Studio in Cloud Pak for Data are addressed

Summary There are multiple vulnerabilities impacting IBM Watson Studio in Cloud Pak for Data. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2019-12900 DESCRIPTION: BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bound...

9.8CVSS9.3AI score0.01111EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/06/23 4:45 p.m.•11 views

Security Bulletin: Multiple Vulnerabilities affecting IBM Watson Studio in Cloud Pak for Data are addressed

Summary There are multiple vulnerabilities impacting IBM Watson Studio in Cloud Pak for Data. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2021-3918 DESCRIPTION: json-schema is vulnerable to Improperly Controlled Modification of Object...

9.8CVSS10AI score0.94251EPSS

Exploits48Affected Software1

RedhatCVE•added 2025/05/23 8:53 a.m.•4 views

CVE-2024-49340

IBM Watson Studio Local 1.2.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

8.8CVSS6.9AI score0.00075EPSS

Exploits0References1

IBM Security Bulletins•added 2025/03/03 2:36 p.m.•54 views

Security Bulletin: Multiple Vulnerabilities affecting IBM Watson Studio in Cloud Pak for Data are addressed

Summary There are multiple vulnerabilities impacting IBM Watson Studio in Cloud Pak for Data. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2019-9169 DESCRIPTION: GNU glibc is vulnerable to a heap-based buffer overflow, caused by a buff...

10CVSS9.7AI score0.38894EPSS

Exploits12Affected Software1

CNVD•added 2024/10/17 12:0 a.m.•7 views

IBM Watson Studio Local Cross-Site Request Forgery Vulnerability

IBM Watson Studio Local is a suite of collaborative data processing solutions from International Business Machines IBM. The product includes features such as data analysis, data visualization, data cleansing and streaming data extraction. A cross-site request forgery vulnerability exists in IBM...

8.8CVSS6.5AI score0.00075EPSS

Exploits0References1

NVD•added 2024/10/16 12:15 a.m.•10 views

CVE-2024-49340

8.8CVSS0.00075EPSS

Exploits0References1

Cvelist•added 2024/10/15 11:57 p.m.•13 views

CVE-2024-49340 IBM Watson Studio Local cross-site request forgery

4.3CVSS0.00075EPSS

Exploits0References1

Vulnrichment•added 2024/10/15 11:57 p.m.•17 views

CVE-2024-49340 IBM Watson Studio Local cross-site request forgery