CVE-2023-27540: IBM Watson CP4D Data Stores denial of service
First published: Wed Jul 05 2023(Updated: )
IBM Watson CP4D Data Stores 4.6.0 does not properly allocate resources without limits or throttling which could allow a remote attacker with information specific to the system to cause a denial of service. IBM X-Force ID: 248924.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Cloud Pak for Data | =4.6.0 | |
| IBM Watson CP4D Data Stores | ||
| Redhat Openshift | ||
| <=All |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-27540.
What is the severity of CVE-2023-27540?
The severity of CVE-2023-27540 is high with a CVSS score of 7.5.
What is the affected software?
The affected software is IBM Watson CP4D Data Stores 4.6.0 and IBM Cloud Pak for Data.
What is the impact of this vulnerability?
This vulnerability could allow a remote attacker with specific information to cause a denial of service.
How can I fix this vulnerability?
To fix this vulnerability, apply the necessary patches or updates provided by IBM.
- collector/nvd-latest
- agent/references
- agent/type
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/last-modified-date
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/event
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- vendor/ibm
- canonical/ibm cloud pak for data
- version/ibm cloud pak for data/4.6.0
- canonical/ibm watson cp4d data stores
- vendor/redhat
- canonical/redhat openshift
- version/ibm watson cp4d data stores/all