SB2025051521 - IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge update for Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2025051521

SB2025051521 - IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge update for Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition

Published: May 15, 2025

Security Bulletin ID SB2025051521
Severity
Low
Patch available
YES
Number of vulnerabilities 1
Exploitation vector Remote access
Highest impact Data manipulation

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 1 security vulnerability.


1) Improper input validation (CVE-ID: CVE-2024-21211)

The vulnerability allows a remote non-authenticated attacker to manipulate data.

The vulnerability exists due to improper input validation within the Compiler component in Oracle GraalVM Enterprise Edition. A remote non-authenticated attacker can exploit this vulnerability to manipulate data.


Remediation

Install update from vendor's website.

References