CVE-2024-35151
- EPSS 0.07%
- Veröffentlicht 22.08.2024 11:15:13
- Zuletzt bearbeitet 23.08.2024 15:32:15
IBM OpenPages with Watson 8.3 and 9.0 could allow authenticated users access to sensitive information through improper authorization controls on APIs.
CVE-2023-40683
- EPSS 0.02%
- Veröffentlicht 19.01.2024 01:15:08
- Zuletzt bearbeitet 21.11.2024 08:19:57
IBM OpenPages with Watson 8.3 and 9.0 could allow remote attacker to bypass security restrictions, caused by insufficient authorization checks. By authenticating as an OpenPages user and using non-public APIs, an attacker could exploit this vulnerabi...
CVE-2023-38738
- EPSS 0.04%
- Veröffentlicht 19.01.2024 01:15:08
- Zuletzt bearbeitet 21.11.2024 08:14:09
IBM OpenPages with Watson 8.3 and 9.0 could provide weaker than expected security in a OpenPages environment using Native authentication. If OpenPages is using Native authentication an attacker with access to the OpenPages database could through a s...
CVE-2021-29907
- EPSS 0.56%
- Veröffentlicht 31.08.2021 16:15:07
- Zuletzt bearbeitet 21.11.2024 06:01:58
IBM OpenPages with Watson 8.1 and 8.2 could allow an authenticated user to upload a file that could execute arbitrary code on the system. IBM X-Force ID: 207633.