Exploited
medium
5.4
Advisory Published

IBM-XFORCE-246115

First published: Sat Apr 01 2023(Updated: )

IBM Business Automation Workflow cross-site scripting

Affected SoftwareAffected VersionHow to fix
IBM Business Automation Workflow>=18.0.0.0<=22.0.2
IBM Business Automation Workflow<=20.0.0.1
IBM Business Automation Workflow<=19.0.0.1
IBM Business Automation Workflow<=19.0.0.3
IBM Business Automation Workflow<=20.0.0.1
IBM Business Automation Workflow<=20.0.0.2
IBM Business Automation Workflow<=21.0.1
IBM Business Automation Workflow<=20.0.0.2
IBM Business Automation Workflow<=21.0.3
IBM Cloud Pak for Business Automation<=18.0.0
IBM Cloud Pak for Business Automation<=18.0.1
IBM Cloud Pak for Business Automation<=18.0.2
IBM Cloud Pak for Business Automation<=19.0.1
IBM Cloud Pak for Business Automation<=19.0.2
IBM Cloud Pak for Business Automation<=19.0.3
IBM Cloud Pak for Business Automation<=20.0.1
IBM Cloud Pak for Business Automation<=20.0.2
IBM Cloud Pak for Business Automation<=20.0.3
IBM Cloud Pak for Business Automation<=21.0.1
IBM Cloud Pak for Business Automation<=21.0.2
IBM Cloud Pak for Business Automation<=21.0.3
IBM Business Automation Workflow<=21.0.2
IBM Business Automation Workflow<=22.0.1
IBM Business Automation Workflow<=22.0.1
IBM Cloud Pak for Business Automation<=22.0.1
IBM Business Automation Workflow<=19.0.0.2
IBM Business Automation Workflow<=21.0.3.1
IBM Business Automation Workflow<=22.0.2
IBM Business Automation Workflow<=22.0.2
IBM Cloud Pak for Business Automation<=22.0.2

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of IBM-XFORCE-246115?

    The severity of IBM-XFORCE-246115 has not been explicitly defined, but cross-site scripting (XSS) vulnerabilities typically have a medium to high severity rating depending on the context of their exploitation.

  • How do I fix IBM-XFORCE-246115?

    To fix IBM-XFORCE-246115, users should update their IBM Business Automation Workflow to a patched version that resolves the cross-site scripting vulnerability.

  • What products are affected by IBM-XFORCE-246115?

    IBM-XFORCE-246115 affects multiple versions of IBM Business Automation Workflow, including versions 18.0.0.0 through 22.0.2.

  • What are the implications of IBM-XFORCE-246115?

    The implications of IBM-XFORCE-246115 may include unauthorized access to sensitive information or the execution of malicious scripts in users' browsers.

  • Is there a known exploit for IBM-XFORCE-246115?

    As of now, there is no public information regarding specific exploits associated with IBM-XFORCE-246115, but the nature of XSS vulnerabilities makes them potentially dangerous if left unpatched.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203