7.5

CVE-2023-27540

IBM Watson CP4D Data Stores denial of service

IBM Watson CP4D Data Stores 4.6.0 does not properly allocate resources without limits or throttling which could allow a remote attacker with information specific to the system to cause a denial of service.  IBM X-Force ID:  248924.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmCloud Pak For Data Version4.6.0
   RedhatOpenshift Version-
IbmWatson Cp4d Data Stores Version-
   RedhatOpenshift Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.98% 0.576
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
psirt@us.ibm.com 5.9 2.2 3.6
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE-770 Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

https://exchange.xforce.ibmcloud.com/vulnerabilities/248924
Vendor Advisory
VDB Entry
https://www.ibm.com/support/pages/node/7009883
Vendor Advisory