Vulnerabilities > CVE-2024-43188 - Unspecified vulnerability in IBM Business Automation Workflow

CVSS 4.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

ibm

NVD

Published: 2024-09-18

Updated: 2024-09-29

Summary

IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2, and 24.0.0 could allow a privileged user to perform unauthorized activities due to improper client side validation.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Business Automation Workflow 20.0.0.1 IBM Business Automation Workflow 20.0.0.2 IBM Business Automation Workflow 22.0.1 IBM Business Automation Workflow 19.0.0.1 IBM Business Automation Workflow 19.0.0.2 IBM Business Automation Workflow 19.0.0.3 IBM Business Automation Workflow 21.0.1 IBM Business Automation Workflow 21.0.2 IBM Business Automation Workflow 21.0.3 IBM Business Automation Workflow 21.0.3.1 IBM Business Automation Workflow 22.0.2 IBM Business Automation Workflow 23.0.1 IBM Business Automation Workflow * IBM Business Automation Workflow 24.0.0 IBM Business Automation Workflow 23.0.2	15

References

https://www.ibm.com/support/pages/node/7168769