Latest high severity vulnerabilities for "ibm watson query with cloud pak for data"

IBM Data Virtualization on Cloud Pak for DataLimited directory traversal vulnerability on Windows in golang.org/x/crypto

high

7.5

First published (updated )

CVE-2022-30636

IBM Data Virtualization on Cloud Pak for DataAsync <= 2.6.4 and <= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) whi…

high

7.5

First published (updated )

CVE-2024-39249

IBM Data Virtualization on Cloud Pak for DataApache Commons Configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator()

high

7.3

EPSS

0.04%

First published (updated )

CVE-2024-29131

IBM Data Virtualization on Cloud Pak for DataInfinite loop in JSON unmarshaling in google.golang.org/protobuf

high

7.5

EPSS

0.04%

First published (updated )

CVE-2024-24786

IBM Data Virtualization on Cloud Pak for DataIBM Db2 denial of service

high

7.5

First published (updated )

CVE-2023-45193

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

IBM Data Virtualization on Cloud Pak for DataIBM Db2 information disclosure

high

7.5

First published (updated )

CVE-2023-47152

IBM Data Virtualization on Cloud Pak for DataInput Validation

high

7.3

First published (updated )

CVE-2023-26159

IBM Data Virtualization on Cloud Pak for DataAn unspecified vulnerability in Oracle MySQL Connectors related to the Connector/J component could a…

high

8.3

First published (updated )

CVE-2023-22102

IBM Data Virtualization on Cloud Pak for DataDoS Vulnerability in JSON-Java

high

7.5

First published (updated )

CVE-2023-5072

IBM Data Virtualization on Cloud Pak for DataInefficient Regular Expression Complexity in get-func-name

high

8.6

First published (updated )

CVE-2023-43646

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

IBM Data Virtualization on Cloud Pak for DataAll versions of the package word-wrap are vulnerable to Regular Expression Denial of Service (ReDoS)…

high

7.5

First published (updated )

CVE-2023-26115

redhat/eap7-activemq-artemisVersions of the package semver before 7.5.2 are vulnerable to Regular Expression Denial of Service (…

high

7.5

First published (updated )

CVE-2022-25883

IBM Data Virtualization on Cloud Pak for DataAn issue was discovered json-io thru 4.14.0 allows attackers to cause a denial of service or other u…

high

7.5

First published (updated )

CVE-2023-34610

IBM Data Virtualization on Cloud Pak for DataSnowflake JDBC vulnerable to command injection via SSO URL authentication

high

8.8

First published (updated )

CVE-2023-30535

FasterXML Jackson DatabindA flaw was found in Jackson Databind. This issue may allow a malicious user to cause a denial of ser…

high

7.5

First published (updated )

CVE-2021-46877

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

IBM Data Virtualization on Cloud Pak for DataDenial of service via crafted HTTP/2 stream in net/http and golang.org/x/net

high

7.5

First published (updated )

CVE-2022-41723

IBM Data Virtualization on Cloud Pak for DataRequest smuggling due to improper request handling in golang.org/x/net/http2/h2c

high

7.5

First published (updated )

CVE-2022-41721

IBM Data Virtualization on Cloud Pak for DataInput Validation

high

7.5

First published (updated )

CVE-2022-40898

IBM Data Virtualization on Cloud Pak for DataLinkedIn dustjs prototype pollution

high

8.8

First published (updated )

CVE-2021-4264

redhat/eap7-jettisonBuffer Overflow

high

7.5

First published (updated )

CVE-2022-45693

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

redhat/rh-sso7-keycloakApache CXF directory listing / code exfiltration

high

7.5

First published (updated )

CVE-2022-46363

IBM Data Virtualization on Cloud Pak for DataBuffer Overflow

high

7.5

First published (updated )

CVE-2022-45685

IBM Data Virtualization on Cloud Pak for DataBuffer Overflow

high

7.5

First published (updated )

CVE-2022-45688

redhat/qsExpress.js Express is vulnerable to a denial of service, caused by a prototype pollution flaw in qs.…

high

7.5

First published (updated )

CVE-2022-24999

Linux KernelLast updated 25 April 2025

high

7.8

First published (updated )

CVE-2022-4139

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

NetApp Baseboard Management Controller FirmwareApache OpenOffice: "Use after free" fixed in libexpat

high

7.5

First published (updated )

CVE-2022-43680

redhat/libxml2Integer Overflow, Input Validation, Race Condition, Double Free

high

7.5

First published (updated )

CVE-2022-40303

redhat/libxml2Double Free, Input Validation, Race Condition, Integer Overflow

high

7.8

First published (updated )

CVE-2022-40304

IBM Data Virtualization on Cloud Pak for DataMemory exhaustion when compiling regular expressions in regexp/syntax

high

7.5

First published (updated )

CVE-2022-41715

IBM Data Virtualization on Cloud Pak for DataIncorrect sanitization of forwarded query parameters in net/http/httputil

high

7.5

First published (updated )

CVE-2022-2880

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Trending

Versions

IBM Data Virtualization on Cloud Pak for DataLimited directory traversal vulnerability on Windows in golang.org/x/crypto

IBM Data Virtualization on Cloud Pak for DataAsync &lt;= 2.6.4 and &lt;= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) whi…

IBM Data Virtualization on Cloud Pak for DataApache Commons Configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator()

IBM Data Virtualization on Cloud Pak for DataInfinite loop in JSON unmarshaling in google.golang.org/protobuf

IBM Data Virtualization on Cloud Pak for DataIBM Db2 denial of service

Never miss a vulnerability like this again

IBM Data Virtualization on Cloud Pak for DataIBM Db2 information disclosure

IBM Data Virtualization on Cloud Pak for DataInput Validation

IBM Data Virtualization on Cloud Pak for DataAn unspecified vulnerability in Oracle MySQL Connectors related to the Connector/J component could a…

IBM Data Virtualization on Cloud Pak for DataDoS Vulnerability in JSON-Java

IBM Data Virtualization on Cloud Pak for DataInefficient Regular Expression Complexity in get-func-name

Never miss a vulnerability like this again

IBM Data Virtualization on Cloud Pak for DataAll versions of the package word-wrap are vulnerable to Regular Expression Denial of Service (ReDoS)…

redhat/eap7-activemq-artemisVersions of the package semver before 7.5.2 are vulnerable to Regular Expression Denial of Service (…

IBM Data Virtualization on Cloud Pak for DataAn issue was discovered json-io thru 4.14.0 allows attackers to cause a denial of service or other u…

IBM Data Virtualization on Cloud Pak for DataSnowflake JDBC vulnerable to command injection via SSO URL authentication

FasterXML Jackson DatabindA flaw was found in Jackson Databind. This issue may allow a malicious user to cause a denial of ser…

Never miss a vulnerability like this again

IBM Data Virtualization on Cloud Pak for DataDenial of service via crafted HTTP/2 stream in net/http and golang.org/x/net

IBM Data Virtualization on Cloud Pak for DataRequest smuggling due to improper request handling in golang.org/x/net/http2/h2c

IBM Data Virtualization on Cloud Pak for DataInput Validation

IBM Data Virtualization on Cloud Pak for DataLinkedIn dustjs prototype pollution

redhat/eap7-jettisonBuffer Overflow

Never miss a vulnerability like this again

redhat/rh-sso7-keycloakApache CXF directory listing / code exfiltration

IBM Data Virtualization on Cloud Pak for DataBuffer Overflow

IBM Data Virtualization on Cloud Pak for DataBuffer Overflow

redhat/qsExpress.js Express is vulnerable to a denial of service, caused by a prototype pollution flaw in qs.…

Linux KernelLast updated 25 April 2025

Never miss a vulnerability like this again

NetApp Baseboard Management Controller FirmwareApache OpenOffice: "Use after free" fixed in libexpat

redhat/libxml2Integer Overflow, Input Validation, Race Condition, Double Free

redhat/libxml2Double Free, Input Validation, Race Condition, Integer Overflow

IBM Data Virtualization on Cloud Pak for DataMemory exhaustion when compiling regular expressions in regexp/syntax

IBM Data Virtualization on Cloud Pak for DataIncorrect sanitization of forwarded query parameters in net/http/httputil

Never miss a vulnerability like this again

Company

Resources

Contact

IBM Data Virtualization on Cloud Pak for DataAsync <= 2.6.4 and <= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) whi…