PT-2024-12906 · Ibm · Ibm Watson Cp4D Data Stores
Published
2024-05-07
·
Updated
2025-08-20
·
CVE-2023-40694
CVSS v3.1
6.2
Medium
| Vector | AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Watson CP4D Data Stores versions 4.0.0 through 4.8.4
Description
The issue concerns the storage of potentially sensitive information in log files by IBM Watson CP4D Data Stores, which could be accessed by a local user.
Recommendations
For versions 4.0.0 through 4.8.4, consider restricting access to log files to minimize the risk of sensitive information exposure until a patch is available.
Fix
Insertion into Log File
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Watson Cp4D Data Stores