Skip to main content

Cloud Pak For Data

7 CVEs product

Monthly

CVE-2025-0719 MEDIUM This Month

IBM Cloud Pak for Data 4.0.0 through 4.8.5 and 5.0.0 is vulnerable to cross-site scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

IBM XSS Cloud Pak For Data
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2023-27877 HIGH PATCH This Week

IBM Planning Analytics Cartridge for Cloud Pak for Data 4.0 connects to a CouchDB server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure IBM Cloud Pak For Data
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2023-26026 HIGH PATCH This Week

Planning Analytics Cartridge for Cloud Pak for Data 4.0 exposes sensitive information in logs which could lead an attacker to exploit this vulnerability to conduct further attacks. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure IBM Cloud Pak For Data
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2023-26023 HIGH PATCH This Week

Planning Analytics Cartridge for Cloud Pak for Data 4.0 exposes sensitive information in logs which could lead an attacker to exploit this vulnerability to conduct further attacks. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure IBM Cloud Pak For Data
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-27540 HIGH This Week

IBM Watson CP4D Data Stores 4.6.0 does not properly allocate resources without limits or throttling which could allow a remote attacker with information specific to the system to cause a denial of. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service IBM Cloud Pak For Data Watson Cp4D Data Stores
NVD
CVSS 3.1
7.5
EPSS
1.3%
CVE-2021-38899 MEDIUM PATCH This Month

IBM Cloud Pak for Data 2.5 could allow a local user with special privileges to obtain highly sensitive information. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

IBM Information Disclosure Cloud Pak For Data
NVD
CVSS 3.1
4.4
EPSS
0.3%
CVE-2021-20486 MEDIUM PATCH This Month

IBM Cloud Pak for Data 3.0 could allow an authenticated user to obtain sensitive information when installed with additional plugins. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

IBM Information Disclosure Cloud Pak For Data
NVD
CVSS 3.1
6.5
EPSS
0.9%
EPSS 0% CVSS 6.1
MEDIUM This Month

IBM Cloud Pak for Data 4.0.0 through 4.8.5 and 5.0.0 is vulnerable to cross-site scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

IBM XSS Cloud Pak For Data
NVD
EPSS 0% CVSS 7.5
HIGH PATCH This Week

IBM Planning Analytics Cartridge for Cloud Pak for Data 4.0 connects to a CouchDB server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure IBM Cloud Pak For Data
NVD
EPSS 0% CVSS 7.5
HIGH PATCH This Week

Planning Analytics Cartridge for Cloud Pak for Data 4.0 exposes sensitive information in logs which could lead an attacker to exploit this vulnerability to conduct further attacks. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure IBM Cloud Pak For Data
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Planning Analytics Cartridge for Cloud Pak for Data 4.0 exposes sensitive information in logs which could lead an attacker to exploit this vulnerability to conduct further attacks. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure IBM Cloud Pak For Data
NVD
EPSS 1% CVSS 7.5
HIGH This Week

IBM Watson CP4D Data Stores 4.6.0 does not properly allocate resources without limits or throttling which could allow a remote attacker with information specific to the system to cause a denial of. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service IBM Cloud Pak For Data +1
NVD
EPSS 0% CVSS 4.4
MEDIUM PATCH This Month

IBM Cloud Pak for Data 2.5 could allow a local user with special privileges to obtain highly sensitive information. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

IBM Information Disclosure Cloud Pak For Data
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

IBM Cloud Pak for Data 3.0 could allow an authenticated user to obtain sensitive information when installed with additional plugins. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

IBM Information Disclosure Cloud Pak For Data
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy