CVE-2024-37526

Name of the Vulnerable Software and Affected Versions: IBM Watson Query on Cloud Pak for Data (IBM Data Virtualization) versions 1.8 through 3.0.0

Description: The issue allows an authenticated user to obtain sensitive information from objects published using Watson Query due to an improper data protection mechanism.

Recommendations: For versions 1.8 through 3.0.0, consider restricting access to sensitive information until a proper data protection mechanism is implemented. At the moment, there is no information about a newer version that contains a fix for this vulnerability.