PT-2019-17037 · Ibm · Ibm Watson Studio Local

Published

2019-12-30

Updated

2020-08-24

CVE-2019-4335

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Watson Studio Local version 1.2.3

Description The issue concerns the storage of key files in the user's home directory, potentially allowing another local user to obtain them.

Recommendations For IBM Watson Studio Local version 1.2.3, consider restricting access to the user's home directory to minimize the risk of key file exposure. As a temporary workaround, limit local user privileges to prevent unauthorized access to sensitive files.

Fix

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522

Related Identifiers

CVE-2019-4335

Affected Products

Ibm Watson Studio Local

PT-2019-17037 · Ibm · Ibm Watson Studio Local

CVE-2019-4335

Weakness Enumeration

Related Identifiers

Affected Products

References · 4