CVE-2024-43188

4.9MEDIUM

Key Information

Vendor: IBM
Status: Business Automation Workflow
Vendor: CVE Published:; 18 September 2024

Summary

IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2, and 24.0.0 could allow a privileged user to perform unauthorized activities due to improper client side validation.

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Sep 18, 2024

Collectors

NVD Database