Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Watson Machine Learning on Cloud Pak for Data server-side request forgery
Vulnerability Description
IBM Watson Machine Learning on Cloud Pak for Data 4.0 and 4.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 253350.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
IBM Cloud Pak for Data 代码问题漏洞
Vulnerability Description
IBM Cloud Pak for Data是美国国际商业机器(IBM)公司的一个具有数据结构的数据和 AI 平台。可以在任何云上为 AI 和分析提供所有数据。 IBM Cloud Pak for Data 4.0和4.5版本存在代码问题漏洞,该漏洞源于允许经过身份验证的攻击者从系统发送未经授权的请求,从而可能导致网络枚举或促进其他攻击。
CVSS Information
N/A
Vulnerability Type
N/A