Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2024-16921
HistoryMar 26, 2024 - 12:00 a.m.

IBM Cloud Pak for Automation CSV Injection Vulnerability

2024-03-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
ibm
cloud pak
automation
csv
injection
vulnerability
intelligent software platform
international business machines
pre-integrated
low-code tools
cloud environments
validation
exploited
attacker
arbitrary commands

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

IBM Cloud Pak for Automation is an intelligent software platform for building automation applications in cloud environments from International Business Machines (IBM). The platform uses pre-integrated automation technologies and low-code tools to design, build and run automation applications and services on any cloud. A CSV injection vulnerability exists in IBM Cloud Pak for Automation that stems from not properly validating the contents of a CSV file, which could be exploited by an attacker to execute arbitrary commands on a system.

Related

cve 1
cvelist 1
nvd 1
prion 1
ibm 1
cve
cve
CVE-2023-35899
2024-03-21 02:47:58
cvelist
cvelist
CVE-2023-35899 IBM Cloud Pak for Automation CSV injection
2024-03-05 18:55:44
nvd
nvd
CVE-2023-35899
2024-03-21 02:47:58
prion
prion
Input validation
2024-03-14 23:45:51
ibm
ibm
Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for August 2023
2023-09-01 19:56:42

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON
Related for CNVD-2024-16921
cve1cvelist1nvd1prion1ibm1