6 matches found
Security Bulletin: Vulnerability in Lodash affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.
Summary Potential vulnerability in Lodash has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information. Vulnerabilit...
Lodash-CVE-poc
🔴 CVE-2019-10744 | CVE-2018-16487 | CVE-2018-3721 | CVE-2021-2...
-fides-amor-et-lux (=1.0.0), -graphql-codegen-client-preset-swc-test (>=2.0.1 <=2.0.2) +49830 more potentially affected by CVE-2026-4800 via lodash (>=4.0.0 <=4.17.9)
lodash NPM version =4.0.0, =2.0.1, =1.0.49, =0.0.8, =0.2.0, =0.0.1, =1.0.0, =0.0.1, =1.0.7, =1.0.0, =1.0.0, =1.0.1 and more Source cves: CVE-2026-4800 Source advisory: OSV:GHSA-R5FR-RJXR-66JC...
Security Bulletin: IBM Security SOAR is using a component with a known vulnerability (CVE-2025-13465)
Summary IBM Security SOAR uses an older version of the Lodash component that may be identified and exploited. Updates for supported versions have been released which address the issue. It is recommended to upgrade to version 51.0.9.0 Vulnerability Details CVEID:CVE-2025-13465 DESCRIPTION: Lodash...
10by10-react-app (=1.2.1), 1k-utils (>=1.0.0 <=1.4.0) +15141 more potentially affected by CVE-2020-28500 via lodash (>=4.0.0 <=4.17.20)
lodash NPM version =4.0.0, =1.0.0, =0.0.2, =0.1.1, =1.0.0, =0.2.0, =0.0.2, =0.1.0, =0.1.0, =1.0.23, =4.11.0, =0.0.1, =0.2.1, =0.3.44 and more Source cves: CVE-2020-28500 Source advisory: OSV:GHSA-29MW-WPGM-HMR9...
1tp (>=0.0.2 <=0.21.1), 1tp-registrar (>=0.1.1 <=0.1.2) +5702 more potentially affected by CVE-2018-16487 +1 more via lodash (>=4.0.0 <=4.17.10)
lodash NPM version =4.0.0, =0.0.2, =0.1.1, =1.0.0, =0.2.0, =0.1.0, =0.1.0, =0.0.1, =0.2.1, =0.0.2, =0.0.7, =0.4.20, =1.16.0, =1.16.0, =1.16.7 and more Source cves: CVE-2018-16487, CVE-2018-3721 Source advisory: SNYK:JS-LODASH-73638...