Local File Exposure in IBM Watson Studio Local
CVE-2019-4335

6.2MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
30 December 2019

Summary

IBM Watson Studio Local 1.2.3 has a vulnerability that allows key files to be stored in the user's home directory, potentially exposing sensitive data to other local users. This situation creates a security risk, as unauthorized access to these files could lead to data breaches. It's crucial for users to be aware of their file storage configurations and to implement necessary security measures to mitigate threats posed by this vulnerability.

Affected Version(s)

Watson Studio Local 1.2.3

References

CVSS V3.1

Score:
6.2
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.