2 results (0.002 seconds)

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

IBM Watson Studio Local 1.2.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. • https://www.ibm.com/support/pages/node/1144438 • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0

IBM Watson Studio Local 1.2.3 stores key files in the user's home directory which could be obtained by another local user. IBM X-Force ID: 161413. IBM Watson Studio Local versión 1.2.3, almacena archivos clave en el directorio de inicio del usuario que podrían ser obtenidos por parte de otro usuario local. ID de IBM X-Force: 161413. • https://exchange.xforce.ibmcloud.com/vulnerabilities/161413 https://www.ibm.com/support/pages/node/1146370 • CWE-522: Insufficiently Protected Credentials •