Medium Severity

IBM Security Bulletin: Vulnerabilities exist in Watson Explorer Analytical Components and Watson Content Analytics (CVE-2018-1901)

Share this post:

Security vulnerabilities have been identified in IBM Watson Explorer Analytical Components, Watson Explorer Foundational Components Annotation Administration Console, and IBM Watson Content Analytics.

CVE(s): CVE-2018-1901

Affected product(s) and affected version(s):

To see which vulnerabilities apply to your product and version, see the applicable row in the following table.

Affected Product

Affected Versions Applicable Vulnerabilities
IBM Watson Explorer Deep Analytics Edition oneWEX Components 12.0.0.0, 12.0.0.1 12.0.1, 12.0.2, 12.0.2.1 CVE-2018-1901
IBM Watson Explorer Deep Analytics Edition Analytical Components 12.0.0.0 12.0.1 12.0.2, 12.0.2.1 CVE-2018-1901
IBM Watson Explorer Deep Analytics Edition Annotation Administration Console 12.0.0.0 12.0.1 12.0.2, 12.0.2.1 CVE-2018-1901
IBM Watson Explorer Analytical Components

11.0.0.0 – 11.0.0.3,
11.0.1,
11.0.2.0 – 11.0.2.4, 12.0.1, 1

CVE-2018-1901
IBM Watson Explorer Foundational Components Annotation Administration Console 11.0.0.0 – 11.0.0.3,
11.0.1,
11.0.2.0 – 11.0.2.4 12.0.0 12.0.1 12.0.2, 12.0.2.1
CVE-2018-1901
IBM Watson Explorer Analytical Components 10.0.0.0 – 10.0.0.2 CVE-2018-1901
IBM Watson Explorer Foundational Components Annotation Administration Console 10.0.0.0 – 10.0.0.5 CVE-2018-1901
IBM Watson Content Analytics 3.5.0.0 – 3.5.0.4 CVE-2018-1901

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10878426
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152530

More stories

IBM Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to security vulnerabilities (CVE-2018-0732, CVE-2018-0739, CVE-2017-3735)

Jul 21, 2019 9:00 am EDT | Medium Severity

IBM has announced a release for IBM Security Identity Governance and Intelligence (IGI) in response to security vulnerabilities 3 issues for OpenSSL: 2 for a denial of service and 1 for an error while parsing an IPAdressFamily extension in an X.509 certificate. CVE(s): CVE-2018-0732, CVE-2018-0739, CVE-2017-3735 Affected product(s) and affected version(s):IBM Security Identity Governance and ...read more


IBM Security Bulletin: A Security Vulnerability affects IBM Cloud Private – Kubernetes (CVE-2019-11246)

Jul 20, 2019 9:01 am EDT | Medium Severity

A Security Vulnerability affects IBM Cloud Private – Kubernetes (CVE-2019-11246) CVE(s): CVE-2019-11246 Affected product(s) and affected version(s):IBM Cloud Private 3.1.0, 3.1.1, 3.1.2, 3.2.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=ibm10957893X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/162892 ...read more


IBM Security Bulletin: Multiple vulnerabilities in Jetty affect Netcool Agile Service Manager (CVE-2019-10247, CVE-2019-10246)

Jul 19, 2019 9:02 am EDT | Medium Severity

There are multiple vulnerabilities in Eclipse Jetty used by Netcool Agile Service Manager. Netcool Agile Service Manager has addressed the applicable CVEs. CVE(s): CVE-2019-10247, CVE-2019-10246 Affected product(s) and affected version(s):Netcool Agile Service Manager 1.1.3 – 1.1.4 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10887913X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160610X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160611 ...read more