|Number of vulnerabilities||1|
IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data
Server applications / Other server solutions
This security bulletin contains one medium risk vulnerability.
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to integer overflow in copyString. A remote attacker can pass specially crafted data to the application, trigger integer overflow and cause a denial of service condition on the target system.Mitigation
Install update from vendor's website.Vulnerable software versions
IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data : before 4.6.0Fixed software versions
Q & A
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?