CNNVD-202509-3953 Information
Sep 25, 2025
cve
CNNVD ID
CNNVD-202509-3953
Related CVE
- CNNVD Published: 2025-09-25
Description (Chinese)
IBM Watson Studio是美国国际商业机器(IBM)公司的一款数据科学与人工智能开发平台。 IBM Watson Studio 4.0版本至5.2.0版本存在跨站脚本漏洞,该漏洞源于Web界面允许嵌入任意JavaScript代码,可能导致跨站脚本攻击和凭据泄露。
Description (English)
IBM Watson Studio is a data science and artificial intelligence development platform for IBM. Versions IBM Watson Studio 4.0 to 5.2.0 have a cross-site script loophole, which stems from the fact that the Web interface allows the embedding of any JavaScript code, which may lead to cross-site script attacks and evidence leaks.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
国际商业机器
Published
2025-09-25
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7246140
Patch
https://www.ibm.com/support/pages/node/7246140
Share on: