// For flags

CVE-2024-49353

IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data denial of service

Severity Score

7.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Attend
*SSVC
Descriptions

IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data 4.0.0 through 5.0.2 does not properly check inputs to resources that are used concurrently, which might lead to unexpected states, possibly resulting in a crash.

IBM Watson Speech Services Cartridge para IBM Cloud Pak for Data 4.0.0 a 5.0.2 no verifica correctamente las entradas a los recursos que se utilizan simultáneamente, lo que puede generar estados inesperados que posiblemente provoquen un bloqueo.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:Attend
Exploitation
None
Automatable
Yes
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2024-10-14 CVE Reserved
  • 2024-11-26 CVE Published
  • 2024-11-26 CVE Updated
  • 2024-11-26 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CAPEC
References (1)
URL Tag Source
https://www.ibm.com/support/pages/node/7177065
URL Date SRC
URL Date SRC
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
IBM
Search vendor "IBM"
 Watson Speech Services Cartridge For IBM Cloud Pak For Data
Search vendor "IBM" for product "Watson Speech Services Cartridge For IBM Cloud Pak For Data"
 >= 4.0.0 <= 5.0.2
Search vendor "IBM" for product "Watson Speech Services Cartridge For IBM Cloud Pak For Data" and version " >= 4.0.0 <= 5.0.2"
en
Affected