- Description
- IBM watsonx.ai 1.1 through 2.0.3 and IBM watsonx.ai on Cloud Pak for Data 4.8 through 5.0.3 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
- Source
- psirt@us.ibm.com
- NVD status
- Received
CVSS 3.1
- Type
- Primary
- Base score
- 5.4
- Impact score
- 2.7
- Exploitability score
- 2.3
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
- psirt@us.ibm.com
- CWE-79
- Hype score
- Not currently trending
آسیب پذیری با کد شناسایی CVE-2024-49785 برای محصول IBM https://t.co/16YV7t4gh2 که از نوع XSS می باشد و باعث انتشار اطلاعاتمی شود ، منتشر شده است. این آسیب پذیری به هکرها امکان اجرای کدهای javascript را می دهد . https://t.co/Poz3aKYxT1 https://t.co/c5szL0cn4b
@AmirHossein_sec
14 Jan 2025
27 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
IBM disclosed a significant vulnerability in its https://t.co/Zaa2I0mGKr platform, potentially exposing users to cross-site scripting (XSS) attacks. The vulnerability, identified as CVE-2024-49785, affects both IBM https://t.co/Zaa2I0mGKr on Cloud Pak for Data #CybersecurityNews
@techaniruddh
12 Jan 2025
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-49785 IBM https://t.co/TCBKmuRQTR 1.1 through 2.0.3 and IBM https://t.co/TCBKmuRQTR on Cloud Pak for Data 4.8 through 5.0.3 is vulnerable to cross-site scripting. This vulnerability allows an authen… https://t.co/Zaw9WclCF8
@CVEnew
12 Jan 2025
793 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes