0.0
CVE-2025-59671 -
Not used
0.0
CVE-2025-59673 -
Not used
0.0
CVE-2025-59670 -
Not used
0.0
CVE-2025-59675 -
Not used
0.0
CVE-2025-59677 -
Not used
0.0
CVE-2025-59674 -
Not used
5.3
CVE-2025-10674 - fuyang_lipengjun platform queryAll AttributeCategoryController improper authorization
A vulnerability was identified in fuyang_lipengjun platform 1.0. This affects the function AttributeCategoryController of the file /attributecategory/queryAll. Such manipulation leads to improper authorization. The attack may be launched remotely. The exploit is publicly available and might be used.
4.3
CVE-2025-36146 - IBM watsonx.data information disclosure
IBM Lakehouse (watsonx.data 2.2) could allow an authenticated user to obtain sensitive server component version information which could aid in further attacks against the system.
4.7
CVE-2025-36143 - IBM watsonx.data command execution
IBM Lakehouse (watsonx.data 2.2) could allow an authenticated privileged user to execute arbitrary commands on the system due to improper validation of user supplied input.
5.5
CVE-2025-36139 - IBM watsonx.data cross-site scripting
IBM Lakehouse (watsonx.data 2.2) is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.