VYPR
Unrated severityNVD Advisory· Published Jul 10, 2023· Updated Nov 12, 2024

IBM Watson Knowledge Catalog CSV injection

CVE-2023-28958

Description

IBM Watson Knowledge Catalog on Cloud Pak for Data 4.0 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 251782.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • IBM/Watson Knowledge Catalogllm-fuzzy2 versions
    on Cloud Pak for Data 4.0+ 1 more
    • (no CPE)range: on Cloud Pak for Data 4.0
    • (no CPE)range: 4.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.