216.73.216.133

CVE-2024-43188

· Published 18/09/2024 12:15 · Modified 29/09/2024 00:24

Labels: CVE-2024-43188 2024-09-18CVE-2024-43188CWE-602NVD-CWE-Other[email protected]

Essential information

Published
18/09/2024 12:15
Modified
29/09/2024 00:24
Author
Creator
CVSS
4.9 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

CVSS metrics

Description

IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2, and 24.0.0 could allow a privileged user to perform unauthorized activities due to improper client side validation.

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
ibm / business automation workflow cpe:2.3:a:ibm:business_automation_workflow:*:*:*:*:traditional:*:*:*
ibm / business automation workflow cpe:2.3:a:ibm:business_automation_workflow:*:*:*:*:traditional:*:*:*
ibm / business automation workflow cpe:2.3:a:ibm:business_automation_workflow:*:*:*:*:traditional:*:*:*
ibm / business automation workflow cpe:2.3:a:ibm:business_automation_workflow:20.0.0.1:*:*:*:traditional:*:*:*
ibm / business automation workflow cpe:2.3:a:ibm:business_automation_workflow:20.0.0.2:*:*:*:traditional:*:*:*
ibm / business automation workflow cpe:2.3:a:ibm:business_automation_workflow:22.0.1:*:*:*:traditional:*:*:*
ibm / business automation workflow cpe:2.3:a:ibm:business_automation_workflow:22.0.2:*:*:*:traditional:*:*:*
ibm / business automation workflow cpe:2.3:a:ibm:business_automation_workflow:23.0.1:*:*:*:traditional:*:*:*
ibm / business automation workflow cpe:2.3:a:ibm:business_automation_workflow:23.0.2:*:*:*:traditional:*:*:*
ibm / business automation workflow cpe:2.3:a:ibm:business_automation_workflow:24.0.0:*:*:*:traditional:*:*:*

References