CVE-2025-1838
published 2025-05-03CVE-2025-1838: IBM Cloud Pak for Business Automation 24.0.0 and 24.0.1 through 24.0.1 IF001 Authoring allows an authenticated user to bypass client-side data validation in an…
medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
IBM Cloud Pak for Business Automation
24.0.0 and 24.0.1 through 24.0.1 IF001
Authoring allows an authenticated user to bypass client-side data validation in an authoring user interface which could cause a denial of service.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | cloud_pak_for_business_automation | — | — |
| ibm | cloud_pak_for_business_automation | — | — |
| ibm | cloud_pak_for_business_automation | 24.0.0 – 24.0.0 IF004 | — |
| ibm | cloud_pak_for_business_automation | 24.0.1 – 24.0.1 IF001 | — |
| msrc | cbl2_kernel_5.15.107.1-2_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| msrc | cm1_kernel_5.10.177.1-1_on_cbl_mariner_1.0 | — | — |