2 matches found
CVE-2024-49340
IBM Watson Studio Local 1.2.3 is affected by a Cross-Site Request Forgery (CSRF) vulnerability. The issue allows an attacker to trigger actions on behalf of a trusted user, leading to potential unauthorized changes. The publicly documented remediation points to upgrading/remediating to a fixed ve...
CVE-2019-4335
IBM Watson Studio Local 1.2.3 stores key files in the user’s home directory, which could be obtained by another local user. Root cause: insecure storage location leads to potential key exposure. Impact: confidentiality could be HIGH; access is LOCAL, no user interaction required. No exploitation ...