Local File Exposure in IBM Watson Studio Local
CVE-2019-4335

6.2MEDIUM

Key Information:

Vendor: IBM
Status: Watson Studio Local
Vendor: CVE Published:; 30 December 2019

What is CVE-2019-4335?

IBM Watson Studio Local 1.2.3 has a vulnerability that allows key files to be stored in the user's home directory, potentially exposing sensitive data to other local users. This situation creates a security risk, as unauthorized access to these files could lead to data breaches. It's crucial for users to be aware of their file storage configurations and to implement necessary security measures to mitigate threats posed by this vulnerability.

Affected Version(s)

Watson Studio Local 1.2.3

References

https://www.ibm.com/support/pages/node/1146370

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/161413

vdb-entryx_refsource_XF

CVSS V3.1

Score:

6.2

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 30, 2019
Vulnerability Reserved
Jan 3, 2019