Vulnerabilities > IBM > Websphere Automation > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-30 | CVE-2024-54181 | OS Command Injection vulnerability in IBM Websphere Automation 1.7.5 IBM WebSphere Automation 1.7.5 could allow a remote privileged user, who has authorized access to the swagger UI, to execute arbitrary code. | 7.2 |
| 2024-05-01 | CVE-2024-28764 | Improper Neutralization of Formula Elements in a CSV File vulnerability in IBM Websphere Automation 1.7.0 IBM WebSphere Automation 1.7.0 could allow an attacker with privileged access to the network to conduct a CSV injection. | 7.8 |