IBM Cloud Pak for Business Automation
24.0.0 and 24.0.1 through 24.0.1 IF001
Authoring allows an authenticated user to bypass client-side data validation in an authoring user interface which could cause a denial of service.
References
| Link | Resource |
|---|---|
| https://www.ibm.com/support/pages/node/7232429 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
14 Aug 2025, 01:53
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Ibm cloud Pak For Business Automation
Ibm |
|
| References | () https://www.ibm.com/support/pages/node/7232429 - Vendor Advisory | |
| CPE | cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.1:interim_fix_001:*:*:*:*:*:* cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:interim_fix_002:*:*:*:*:*:* cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:interim_fix_001:*:*:*:*:*:* cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.1:-:*:*:*:*:*:* cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:*:*:*:*:*:*:* cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:interim_fix_004:*:*:*:*:*:* cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:interim_fix_003:*:*:*:*:*:* cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:-:*:*:*:*:*:* |
05 May 2025, 20:54
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-05-03 19:15
Updated : 2025-08-14 01:53
NVD link : CVE-2025-1838
Mitre link : CVE-2025-1838
CVE.ORG link : CVE-2025-1838
JSON object : View
Products Affected
ibm
- cloud_pak_for_business_automation
CWE
CWE-602
Client-Side Enforcement of Server-Side Security