Latest critical severity vulnerabilities for "ibm watsonx.data intelligence"

Where

AND

Sort:

Versions

5.2.0, 5.2.1, 5.3.0, 5.3.1

npm/undiciundici is vulnerable to Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Risk 86

Severity

9.8

First published (updated )

CVE-2026-1525

npm/fast-xml-parserfast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity names

Risk 43

Severity

9.3

EPSS

0.04%

First published (updated )

CVE-2026-25896

npm/swiperSwiper has a Prototype Pollution Vulnerability

Risk 57

Severity

9.4

EPSS

0.06%

First published (updated )

CVE-2026-27212

nltk/nltkZip Slip Vulnerability in nltk/nltk Leading to Remote Code Execution

Risk 87

Severity

First published (updated )

CVE-2025-14009

Apache Commons TextCode Injection

Risk 86

Severity

9.8

First published (updated )

CVE-2025-46295

Eclipse JerseyRace Condition allows Bypass of Trust Restrictions

Risk 61

Severity

9.4

First published (updated )

CVE-2025-12383

redhat JBoss Enterprise Application PlatformUndertow-core: undertow http server fails to reject malformed host headers leading to potential cache poisoning and ssrf

Risk 76

Severity

9.6

First published (updated )

CVE-2025-12543

npm/dompurifyDOMPurify vulnerable to tampering by prototype polution

Risk 62

Severity

9.8

EPSS

0.07%

First published (updated )

CVE-2024-48910

npm/dompurifyDOMPurify nesting-based mXSS

Risk 87

Severity

First published (updated )

CVE-2024-47875

Snakeyaml Project SnakeyamlRemote Code execution in SnakeYAML

Risk 93

Severity

9.8

First published (updated )

CVE-2022-1471

Juniper Security Threat Response ManagerApache commons_text(CVE-2022-42889) and commons_configuration (CVE-2022-33980) vulnerability

Risk 99

Severity

9.8

Exploited

First published (updated )

CVE-2022-42889

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Trending

Versions

npm/undiciundici is vulnerable to Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

npm/fast-xml-parserfast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity names

npm/swiperSwiper has a Prototype Pollution Vulnerability

nltk/nltkZip Slip Vulnerability in nltk/nltk Leading to Remote Code Execution

Apache Commons TextCode Injection

Don't miss critical vulnerabilities

Eclipse JerseyRace Condition allows Bypass of Trust Restrictions

redhat JBoss Enterprise Application PlatformUndertow-core: undertow http server fails to reject malformed host headers leading to potential cache poisoning and ssrf

npm/dompurifyDOMPurify vulnerable to tampering by prototype polution

npm/dompurifyDOMPurify nesting-based mXSS

Snakeyaml Project SnakeyamlRemote Code execution in SnakeYAML

Don't miss critical vulnerabilities

Juniper Security Threat Response ManagerApache commons_text(CVE-2022-42889) and commons_configuration (CVE-2022-33980) vulnerability

Company

Resources

Contact