Message Image

Log in

Skip to main content (Press Enter).

Skip auxiliary navigation (Press Enter).

watsonx

The Community for AI architects and builders to learn,
share ideas and connect with others

Skip main navigation (Press Enter).

watsonx.ai

View Only

Expand all | Collapse all

Security Bulletin: Vulnerability in snappy-java affects watsonx.data

1. Security Bulletin: Vulnerability in snappy-java affects watsonx.data

0 Like
NICK PLOWDEN
Posted 20 days ago

Reply
Summary

snappy-java is vulnerable to denial of service attacks, which could affect watsonx.data.

Vulnerability Details

CVEID:   CVE-2023-34453
DESCRIPTION:   snappy-java is vulnerable to a denial of service, caused by an integer overflow in the shuffle function. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CWE:   CWE-190: Integer Overflow or Wraparound
CVSS Source:   IBM X-Force
CVSS Base score:   5.9
CVSS Vector:   (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)

Read the detailed Security bulletin.

#watsonx.ai

------------------------------
Nick Plowden
AI Community Engagement
IBM
------------------------------

Powered by Higher Logic