Product
ibm watsonx.data
9 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-36145
CVE-2025-36335
CVE-2025-36180
CVE-2025-36183
CVE-2025-36140
CVE-2025-36144
CVE-2025-36146
CVE-2025-36143
CVE-2025-36139
>= 2.2.0 and <= 2.3.1
IBM watsonx.data 2.2 through 2.3.1 IBM Lakehouse does not properly restrict inbound and outbound connections which could allow an
all versions
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.3.0, 5.3.1 stores user credentials in plain text which can be read by a local user.
>= 2.2.0 and <= 2.3
IBM watsonx.data 2.2 through 2.3 IBM Lakehouse does not properly restrict communication between pods which could allow an attacker
>= 2.2.0 and < 2.2.2
IBM watsonx.data 2.2 through 2.2.1 IBM Lakehouse could allow a privileged user to upload malicious files that could be executed se
>= 2.2.0 and < 2.2.2
IBM watsonx.data 2.2 through 2.2.1 could allow an authenticated user to cause a denial of service through ingestion pods due to im
all versions
IBM Lakehouse (watsonx.data 2.2) stores potentially sensitive information in log files that could be read by a local user.
all versions
IBM Lakehouse (watsonx.data 2.2) could allow an authenticated user to obtain sensitive server component version information which
all versions
IBM Lakehouse (watsonx.data 2.2) could allow an authenticated privileged user to execute arbitrary commands on the system due to i
all versions
IBM Lakehouse (watsonx.data 2.2) is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embe