CVE-2026-7253

IBM Watson Speech Services Cartridge is vulnerable to Server-Side Request Forgery (SSRF) in Sterling File Gateway, due to a flaw which may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks [GHSA-rr7j-v2q5-chgv] [CVE-2026-7253]. IBM Sterling File Gateway is used in our speech runtimes. This vulnerabilitiy has been addressed. Please read the details for remediation below.
References
Link Resource
https://www.ibm.com/support/pages/node/7276994 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:watson_speech_services_cartridge:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:watson_speech_services_cartridge:5.3.1:-:*:*:*:*:*:*

History

30 Jun 2026, 14:50

Type Values Removed Values Added
First Time Ibm
Ibm watson Speech Services Cartridge
References () https://www.ibm.com/support/pages/node/7276994 - () https://www.ibm.com/support/pages/node/7276994 - Vendor Advisory
CPE cpe:2.3:a:ibm:watson_speech_services_cartridge:5.3.1:-:*:*:*:*:*:*
cpe:2.3:a:ibm:watson_speech_services_cartridge:*:*:*:*:*:*:*:*

22 Jun 2026, 16:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-06-22 16:16

Updated : 2026-06-30 14:50


NVD link : CVE-2026-7253

Mitre link : CVE-2026-7253

CVE.ORG link : CVE-2026-7253


JSON object : View

Products Affected

ibm

  • watson_speech_services_cartridge
CWE
CWE-918

Server-Side Request Forgery (SSRF)