CVE-2023-28955: Input Validation
First published: Wed Jul 05 2023(Updated: )
IBM Watson Knowledge Catalog on Cloud Pak for Data 4.0 could allow an authenticated user send a specially crafted request that could cause a denial of service. IBM X-Force ID: 251704.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Watson Knowledge Catalog on Cloud Pak for Data | >=4.0<4.7 | |
| IBM Watson Knowledge Catalog on-prem | <=4.x |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of IBM Watson Knowledge Catalog on Cloud Pak for Data?
The vulnerability ID of IBM Watson Knowledge Catalog on Cloud Pak for Data is CVE-2023-28955.
What is the severity of CVE-2023-28955?
The severity of CVE-2023-28955 is medium with a severity value of 6.5.
What is the affected software for CVE-2023-28955?
The affected software for CVE-2023-28955 is IBM Watson Knowledge Catalog on Cloud Pak for Data 4.0 up to 4.7 and IBM Watson Knowledge Catalog on-prem 4.x.
How can an authenticated user exploit CVE-2023-28955?
An authenticated user can exploit CVE-2023-28955 by sending a specially crafted request that could cause a denial of service.
How can I fix CVE-2023-28955?
To fix CVE-2023-28955, IBM has provided a patch or upgrade to the affected software. Please refer to the IBM support page for more information.
- collector/nvd-latest
- collector/nvd-index
- collector/ibm-support
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/tags
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- vendor/ibm
- canonical/ibm watson knowledge catalog on cloud pak for data
- version/ibm watson knowledge catalog on cloud pak for data/4.0
- canonical/ibm watson knowledge catalog on-prem
- version/ibm watson knowledge catalog on-prem/4.x