CVE-2023-22860

🗓️ 27 Feb 2023 14:23:44Reported by ibmType

IBM Cloud Pak for Business Automation 18.0.0 - 22.0.2, stored cross-site scripting vulnerability

Reporter	Title	Published	Views	Family All 11
IBM Security Bulletins	Security Bulletin: Security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for Febuary 2023	10 Mar 202318:29	–	ibm
IBM Security Bulletins	Security Bulletin: Persistent cross-site scripting vulnerability affect IBM Business Automation Workflow - CVE-2023-22860	2 Mar 202306:40	–	ibm
Circl	CVE-2023-22860	27 Feb 202318:27	–	circl
CNNVD	IBM Cloud Pak for Business Automation 跨站脚本漏洞	27 Feb 202300:00	–	cnnvd
Cvelist	CVE-2023-22860 IBM Cloud Pak for Business Automation cross-site scripting	27 Feb 202314:23	–	cvelist
EUVD	EUVD-2023-26970	3 Oct 202520:07	–	euvd
NVD	CVE-2023-22860	27 Feb 202315:15	–	nvd
Prion	Cross site scripting	27 Feb 202315:15	–	prion
Positive Technologies	PT-2023-18735 · Ibm · Ibm Cloud Pak For Business Automation	27 Feb 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-22860	23 May 202504:45	–	redhatcve

NVD

Vulners

Node

ibm cloud_pak_for_business_automationMatch18.0.0

ibm cloud_pak_for_business_automationMatch18.0.2

ibm cloud_pak_for_business_automationMatch19.0.1

ibm cloud_pak_for_business_automationMatch19.0.3

ibm cloud_pak_for_business_automationMatch20.0.1

ibm cloud_pak_for_business_automationMatch20.0.3

ibm cloud_pak_for_business_automationMatch21.0.1-

ibm cloud_pak_for_business_automationMatch21.0.1interim_fix_001

ibm cloud_pak_for_business_automationMatch21.0.1interim_fix_002

ibm cloud_pak_for_business_automationMatch21.0.1interim_fix_003

ibm cloud_pak_for_business_automationMatch21.0.1interim_fix_004

ibm cloud_pak_for_business_automationMatch21.0.1interim_fix_005

ibm cloud_pak_for_business_automationMatch21.0.1interim_fix_006

ibm cloud_pak_for_business_automationMatch21.0.1interim_fix_007

ibm cloud_pak_for_business_automationMatch21.0.2-

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_001

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_0012

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_002

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_003

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_004

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_005

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_006

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_007

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_008

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_009

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_010

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_011

ibm cloud_pak_for_business_automationMatch21.0.2interim_fix_012

ibm cloud_pak_for_business_automationMatch21.0.3-

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_001

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_002

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_003

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_004

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_005

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_006

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_007

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_008

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_009

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_010

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_011

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_012

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_013

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_014

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_015

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_016

ibm cloud_pak_for_business_automationMatch21.0.3interim_fix_017

ibm cloud_pak_for_business_automationMatch22.0.1-

ibm cloud_pak_for_business_automationMatch22.0.1interim_fix_001

ibm cloud_pak_for_business_automationMatch22.0.1interim_fix_002

ibm cloud_pak_for_business_automationMatch22.0.1interim_fix_003

ibm cloud_pak_for_business_automationMatch22.0.1interim_fix_004

ibm cloud_pak_for_business_automationMatch22.0.1interim_fix_005

ibm cloud_pak_for_business_automationMatch22.0.1interim_fix_006

ibm cloud_pak_for_business_automationMatch22.0.2-

ibm cloud_pak_for_business_automationMatch22.0.2interim_fix_001

[
  {
    "defaultStatus": "unaffected",
    "product": "Cloud Pak for Business Automation",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, 22.0.2"
      }
    ]
  }
]

Source	Link
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/244100
ibm	www.ibm.com/support/pages/node/6958062

21 Nov 2024 07:45Current

5.2Medium risk

Vulners AI Score5.2

CVSS 3.15.4

EPSS0.00309

SSVC

CWE-79