216.73.217.86

CVE-2024-35160

· Published 23/11/2024 14:15 · Modified 26/11/2024 19:08

Labels: CVE-2024-35160 2024-11-23CVE-2024-35160CWE-613[email protected]

Essential information

Published
23/11/2024 14:15
Modified
26/11/2024 19:08
Author
Creator
CVSS
4.3 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CVSS metrics

Description

IBM Watson Query on Cloud Pak for Data 1.8, 2.0, 2.1, 2.2 and IBM Db2 Big SQL on Cloud Pak for Data 7.3, 7.4, 7.5, and 7.6 could allow an authenticated user to obtain sensitive information due to insufficient session expiration.

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
ibm / big sql cpe:2.3:a:ibm:big_sql:7.3:*:*:*:*:*:*:*
ibm / big sql cpe:2.3:a:ibm:big_sql:7.4:*:*:*:*:*:*:*
ibm / big sql cpe:2.3:a:ibm:big_sql:7.5:*:*:*:*:*:*:*
ibm / big sql cpe:2.3:a:ibm:big_sql:7.6:*:*:*:*:*:*:*
ibm / watson query with cloud pak for data cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:1.8:*:*:*:*:*:*:*
ibm / watson query with cloud pak for data cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.0:*:*:*:*:*:*:*
ibm / watson query with cloud pak for data cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.1:*:*:*:*:*:*:*
ibm / watson query with cloud pak for data cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.2:*:*:*:*:*:*:*

References