Vulnerabilities > IBM > Business Automation Workflow > 21.0.3.1

DATE CVE VULNERABILITY TITLE RISK
2024-02-04 CVE-2023-50947 Cross-site Scripting vulnerability in IBM products
IBM Business Automation Workflow 22.0.2, 23.0.1, and 23.0.2 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2023-01-26 CVE-2022-43864 Path Traversal vulnerability in IBM Business Automation Workflow and Business Monitor
IBM Business Automation Workflow 22.0.2 could allow a remote attacker to traverse directories on the system.
network
low complexity
ibm CWE-22
7.5
7.5
2022-12-07 CVE-2022-41735 Cross-site Scripting vulnerability in IBM Business Automation Workflow
IBM Business Process Manager 21.0.1 through 21.0.3.1, 20.0.0.1 through 20.0.0.2 19.0.0.1 through 19.0.0.3 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
6.1
6.1
2022-11-17 CVE-2022-38390 Cross-site Scripting vulnerability in IBM Business Automation Workflow
Multiple IBM Business Automation Workflow versions are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4