- Description
- IBM Watson Query on Cloud Pak for Data 1.8, 2.0, 2.1, 2.2 and IBM Db2 Big SQL on Cloud Pak for Data 7.3, 7.4, 7.5, and 7.6 could allow an authenticated user to obtain sensitive information due to insufficient session expiration.
- Source
- psirt@us.ibm.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 6.5
- Impact score
- 3.6
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- psirt@us.ibm.com
- CWE-613
- Hype score
- Not currently trending
CVE Alert: CVE-2024-35160 - https://t.co/sPvsleAxzH #OSINT #ThreatIntel #CyberSecurity #cve_2024_35160
@RedPacketSec
24 Nov 2024
68 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2024-35160: Problematic vuln in IBM Watson Query for Cloud Pak for Data & Db2 Big SQL leads to session expiration. Impact: Unauthorized access. Action: Upgrade affected component immediately. #CyberSecurity #IBMSecurity
@oktsec
23 Nov 2024
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:big_sql:7.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F847F14F-2D58-4E50-B28E-A8F2BE6BE148"
},
{
"criteria": "cpe:2.3:a:ibm:big_sql:7.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F5CA4981-7EA0-41BB-8450-1EF995DC2DA2"
},
{
"criteria": "cpe:2.3:a:ibm:big_sql:7.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D13EB5A5-B222-49A3-9931-ED9D00E2FC93"
},
{
"criteria": "cpe:2.3:a:ibm:big_sql:7.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0F238E3E-4891-4089-A3F0-128B7B947ABD"
},
{
"criteria": "cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:1.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3F682C06-34BF-42E4-8C05-93B142C47D22"
},
{
"criteria": "cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4D451E18-6883-44F7-90A0-50B539D34D65"
},
{
"criteria": "cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B063DD40-B8CE-45EF-A692-99E2B5ED4616"
},
{
"criteria": "cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6EF1367E-3931-479D-882F-B75FD5CA241A"
}
],
"operator": "OR"
}
]
}
]