CVE-2024-35160

Summary

CVE-2024-35160 is a vulnerability affecting IBM Watson Query on Cloud Pak for Data versions 1.8, 2.0, 2.1, and 2.2, as well as IBM Db2 Big SQL on Cloud Pak for Data versions 7.3, 7.4, 7.5, and 7.6. An authenticated user can exploit this issue to gain unauthorized access to sensitive information due to insufficient session expiration. This vulnerability poses a risk to the confidentiality of data processed by these IBM products and requires immediate attention from users to apply the available security patches. IBM has released updates to mitigate this issue and urges all affected users to apply them promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.