Lucene search
K

8 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/10/11 3:47 p.m.19 views

Security Bulletin: Vulnerability in Apache UIMA ( CVE-2022-32287) may affect IBM watsonx Assistant for IBM Cloud Pak for Data

Summary A potential vulnerability CVE-2022-32287 has been identified related to Apache UIMA that may affect IBM watsonx Assistant for IBM Cloud Pak for Data. vulnerability have been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2022-32287 DESCRIPTION:...

7.5CVSS6.5AI score0.01556EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/06 5:52 p.m.29 views

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Apache UIMA directory transversal vulnerability( CVE-2022-32287)

Summary Potential Apache UIMA directory transversal vulnerability CVE-2022-32287 has been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. Refer to details for additional information. Vulnerability Details CVEID:CVE-2022-32287 DESCRIPTION: Apache UIMA could allow a remo...

7.5CVSS7.4AI score0.01556EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/06 2:11 p.m.58 views

Security Bulletin: IBM Watson Explorer is affected by a vulnerability in Apache UIMA

Summary IBM Watson Explorer OneWEX and Foundational Components contains a vulnerable version of Apache UIMA. Vulnerability Details CVEID:CVE-2022-32287 DESCRIPTION: Apache UIMA could allow a remote attacker to traverse directories on the system, caused by improper validation of user supplied inpu...

7.5CVSS7.3AI score0.01556EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/03/08 7:34 p.m.64 views

Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.

Summary Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak. Angular is part of the .NET RHEL infrastructure CVE-2021-4231. Apache UIMA is used by IBM Robotic Process Automation as part of Watson NLP CVE-2022-32287. SnakeYaml is used by IBM Robotic Process...

9.8CVSS8.8AI score0.99615EPSS
Exploits8Affected Software1
CVE
CVE
added 2022/11/03 12:0 a.m.83 views

CVE-2022-32287

CVE-2022-32287 : A relative path traversal in the FileUtil class used by the PEAR management component of Apache UIMA can let an attacker craft ZIP entry names to create files outside the designated target directory. Affected product: Apache UIMA up to version 3.3.0 (and earlier). The issue arise...

7.5CVSS7.2AI score0.01556EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2022/11/03 12:0 a.m.40 views

CVE-2022-32287

A relative path traversal vulnerability in a FileUtil class used by the PEAR management component of Apache UIMA allows an attacker to create files outside the designated target directory using carefully crafted ZIP entry names. This issue affects Apache UIMA Apache UIMA version 3.3.0 and prior...

7.5CVSS7AI score0.01556EPSS
Exploits0References2
OSV
OSV
added 2022/11/03 12:0 a.m.36 views

CVE-2022-32287 Apache UIMA prior to 3.3.1 has a path traversal vulnerability when extracting (PEAR) archives

A relative path traversal vulnerability in a FileUtil class used by the PEAR management component of Apache UIMA allows an attacker to create files outside the designated target directory using carefully crafted ZIP entry names. This issue affects Apache UIMA Apache UIMA version 3.3.0 and prior...

7.5CVSS7.1AI score0.01556EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/11/03 12:0 a.m.26 views

CVE-2022-32287 Apache UIMA prior to 3.3.1 has a path traversal vulnerability when extracting (PEAR) archives

A relative path traversal vulnerability in a FileUtil class used by the PEAR management component of Apache UIMA allows an attacker to create files outside the designated target directory using carefully crafted ZIP entry names. This issue affects Apache UIMA Apache UIMA version 3.3.0 and prior...

7.5AI score0.01556EPSS
Exploits0References2
Rows per page
Query Builder