Lucene search
+L

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/02/07 4:55 p.m.14 views

Security Bulletin: Cross-Site Scripting vulnerability affect IBM Business Automation Workflow - CVE-2024-52364

Summary IBM Business Automation Workflow is vulnerable to a Cross-Site Scripting attack. Vulnerability Details CVEID:CVE-2024-52364 DESCRIPTION: IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2...

5.4CVSS6AI score0.00218EPSS
Exploits0Affected Software2
Circl
Circl
added 2025/02/05 12:16 p.m.7 views

CVE-2024-52364

creationtimestamp| type| source ---|---|--- 2025-02-05 12:16:08+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhgkfjjdmr2t 2025-02-05 14:58:15+00:00| seen| https://t.me/cvedetector/17291 2025-02-05 16:33:37+00:00| seen|...

5.4CVSS5.8AI score0.00218EPSS
Exploits0References4
NVD
NVD
added 2025/02/05 12:15 p.m.12 views

CVE-2024-52364

IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus...

5.4CVSS0.00218EPSS
Exploits0References1
CVE
CVE
added 2025/02/05 11:22 a.m.65 views

CVE-2024-52364

CVE-2024-52364 affects IBM Cloud Pak for Business Automation versions 18.0.0–22.0.2. The description and IBM security bulletins confirm an authenticated user could embed arbitrary JavaScript in the Web UI, potentially leading to credentials disclosure within a trusted session (Cross‑site Scriptin...

5.4CVSS6.3AI score0.00218EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/02/05 11:22 a.m.18 views

CVE-2024-52364 IBM Cloud Pak for Business Automation cross-site scripting

IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus...

5.4CVSS0.00218EPSS
Exploits0References1
Rows per page
Query Builder