CVE-2024-31897
CVSS V2 None
CVSS V3 None
Description
IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, 22.0.2, 23.0.1, and 23.0.2 vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 288178.
Overview
- CVE ID
- CVE-2024-31897
- Assigner
- ibm
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-07-08T02:01:23.947Z
- Last Modified Date
- 2024-07-08T02:01:23.947Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.ibm.com/support/pages/node/7159332 | vendor-advisory |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/288178 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-31897 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31897 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-07-08 13:02:31 | Added to TrackCVE |