Vulnerabilities > CVE-2024-35160

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

CWE-613

NVD

Published: 2024-11-23

Updated: 2024-11-23

Summary

IBM Watson Query on Cloud Pak for Data 1.8, 2.0, 2.1, 2.2 and IBM Db2 Big SQL on Cloud Pak for Data 7.3, 7.4, 7.5, and 7.6 could allow an authenticated user to obtain sensitive information due to insufficient session expiration.

Common Weakness Enumeration (CWE)

CWE-613 - Insufficient Session Expiration

References

https://www.ibm.com/support/pages/node/7168703
https://www.ibm.com/support/pages/node/7176947

Vulnerabilities > CVE-2024-35160 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2024-35160"}]}

Summary

Common Weakness Enumeration (CWE)

References

Vulnerabilities > CVE-2024-35160