CVE-2024-49348 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2 all…
Medium CVSS: 4.3

CVE-2024-49348

IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2



allows restricting access to organizational data to valid contexts. The fact that tasks of type comment can be reassigned via API implicitly grants access to user queries in an unexpected context.
Vendor
Ibm
Product
Cloud Pak For Business Automation
CWE
CWE-266
Yayın Tarihi
2025-02-05 12:15:28
Güncelleme
2025-08-12 16:36:42
Source Identifier
psirt@us.ibm.com
KEV Date Added
-

Kategoriler

CWE-266 Cloud Pak For Business Automation MEDIUM Ibm 2025

Referanslar

https://www.ibm.com/support/pages/node/7182403