IBM Watson Studio Local Cross-Site Request Forgery Vulnerability

IBM Watson Studio Local is a suite of collaborative data processing solutions from International Business Machines IBM. The product includes features such as data analysis, data visualization, data cleansing and streaming data extraction. A cross-site request forgery vulnerability exists in IBM...

CVE-2024-49340

IBM Watson Studio Local 1.2.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

CVE-2024-49340

IBM Watson Studio Local 1.2.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

Security Bulletin: Cross Site Scripting Vulnerability Affects IBM Watson Studio Local

Summary Cross Site Scripting Vulnerability Affects IBM Watson Studio Local Jupyter notebooks. This vulnerability has been addressed. Vulnerability Details CVEID: CVE-2024-49340 DESCRIPTION: IBM Watson Studio Local is vulnerable to cross-site request forgery which could allow an attacker to execut...

PT-2024-33479 · Ibm · Ibm Watson Studio Local

Name of the Vulnerable Software and Affected Versions: IBM Watson Studio Local version 1.2.3 Description: The issue is related to a cross-site request forgery vulnerability, which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

IBM Watson Studio Local 跨站请求伪造漏洞

IBM Watson Studio Local is a suite of collaborative data processing solutions from International Business Machines IBM. The product includes features such as data analysis, data visualization, data cleansing and streaming data extraction. A cross-site request forgery vulnerability exists in IBM...

CVE-2019-4335

IBM Watson Studio Local 1.2.3 stores key files in the user's home directory which could be obtained by another local user. IBM X-Force ID: 161413...

IBM Watson Studio Local Local Secret Key Storage Vulnerability

IBM Watson Studio Local is a suite of collaborative data processing solutions from IBM, USA. The product includes features such as data analysis, data visualization, data cleansing and streaming data extraction. A security vulnerability exists in IBM Watson Studio Local version 1.2.3, which...

IBM Watson Studio Local Information Disclosure Vulnerability

IBM Watson Studio Local is a suite of collaborative data processing solutions from IBM, USA. The product includes features such as data analysis, data visualization, data cleansing and streaming data extraction. A security vulnerability exists in IBM Watson Studio Loca version 1.2.3. An attacker...

Security Bulletin: Multiple Vulnerabilities in libCurl affects IBM Watson Studio Local

Summary Multiple Vulnerabilities in libCurl affects IBM Watson Studio Local Vulnerability Details CVEID: CVE-2019-5482 DESCRIPTION: Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3. CVSS Base score: 6.3 CVSS Temporal Score: See:...

Security Bulletin: Multiple Vulnerabilities in OpenSSL affects IBM Watson Studio Local

Summary Multiple vulnerabilities in OpenSSL affects IBM Watson Studio Local Vulnerability Details CVEID: CVE-2019-1563 DESCRIPTION: In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of...

Security Bulletin: Internal SSL Communication Vulerability in Watson Studio Local (PSIRT-ADV0011800)

Summary Watson Studio local removed support of older SSL protocol Vulnerability Details Third Party Entry: PSIRT-ADV0011800 DESCRIPTION: CVSS Base score: 7.5 CVSS Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products and Versions Affected Products| Versions ---|--- IBM Watson...

Security Bulletin: JWT Token Check Vulnerability in Watson Studio Local

Summary An error in how JWT token signature was checked has been addressed. This issue was leading to invalid Jupyter Notebook access. Vulnerability Details Third Party Entry: PSIRT-ADV0010959 DESCRIPTION: CVSS Base score: 5.9 CVSS Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected...

Security Bulletin: Input Validation Vulnerability in Watson Studio Local

Summary A lack of input validation offered an attack vector in several API calls. This vulnerability is addressed Vulnerability Details Third Party Entry: PSIRT-ADV0011811 DESCRIPTION: CVSS Base score: 8.8 CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products and Versions...

Security Bulletin: Network Vulnerability In Watson Studio Studio Local (CVE-2018-1682)

Summary A network port that could lead to information leakage is closed. Vulnerability Details CVEID: CVE-2018-1682 DESCRIPTION: IBM Data Science Experience Local could disclose sensitive information over the network that an attacked could use in further attacks against the system. CVSS Base scor...

Security Bulletin: Watson Studio Local Key Storage Vulnerability

Summary A vulnerability resulting from the location on key file storage in Watson Studio Local is addressed Vulnerability Details CVEID: CVE-2019-4335 DESCRIPTION: IBM Watson Studio - Local stores key files in the user's home directory which could be obtained by another local user. CVSS Base scor...

Security Bulletin: Multiple Vulnerabilities in GNU binutils affects IBM Watson Studio Local

Summary Multiple Vulnerabilities in GNU binutils affects IBM Watson Studio Local Vulnerability Details CVEID: CVE-2018-1000876 DESCRIPTION: binutils version 2.32 and earlier contains a Integer Overflow vulnerability in objdump, bfdgetdynamicrelocupperbound,bfdcanonicalizedynamicreloc that can...

Security Bulletin: Multiple Vulnerabilities in Nginx affects IBM Watson Studio Local

Summary Multiple Vulnerabilities in Nginx affects IBM Watson Studio Local Vulnerability Details CVEID: CVE-2019-13067 DESCRIPTION: njs through 0.3.3, used in NGINX, has a buffer over-read in nxtutf8decode in nxt/nxtutf8.c. This issue occurs after the fix for CVE-2019-12207 is in place. CVSS Base...

Security Bulletin: Multiple Vulnerabilities in OpenSSH affects IBM Watson Studio Local

Summary Multiple Vulnerabilities in OpenSSH affects IBM Watson Studio Local. Vulnerability Details CVEID: CVE-2019-16905 DESCRIPTION: OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is...

Security Bulletin: Multiple Vulnerabilities in GNU Binutils affects Watson Studio Local

Summary Multiple Vulnerabilities in GNU Binutils affects Watson Studio Local Vulnerability Details CVEID: CVE-2018-18701 DESCRIPTION: An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption vulnerability resulting from infinite...