EUVD-2025-29868

Malicious code in bioql PyPI...

CVE-2025-36144

IBM Lakehouse watsonx.data 2.2 stores potentially sensitive information in log files that could be read by a local user...

PT-2025-39696

Name of the Vulnerable Software and Affected Versions IBM Lakehouse watsonx.data version 2.2 Description The software stores potentially sensitive information in log files. A local user could read these log files, leading to information disclosure. Recommendations At the moment, there is no...

CVE-2025-36143

IBM Lakehouse watsonx.data 2.2 could allow an authenticated privileged user to execute arbitrary commands on the system due to improper validation of user supplied input...

CVE-2025-36139

IBM Lakehouse watsonx.data 2.2 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

CVE-2025-36146

IBM Lakehouse watsonx.data 2.2 could allow an authenticated user to obtain sensitive server component version information which could aid in further attacks against the system...