CVE-2024-49353

Name of the Vulnerable Software and Affected Versions IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data versions 4.0.0 through 5.0.2

Description The issue is caused by synchronization errors when using a shared resource, potentially allowing a remote attacker to cause a denial of service. The problem arises from improper input checking to resources used concurrently, which might lead to unexpected states and possibly result in a crash.

Recommendations For versions 4.0.0 through 5.0.2, consider restricting access to concurrently used resources until a patch is available. As a temporary workaround, avoid using the resources that are used concurrently until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.