Ibm: >> Websphere Automation >> 1.7.0 Security Vulnerabilities
IBM WebSphere Automation 1.7.0 could allow an attacker with privileged access to the network to conduct a CSV injection. An attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 285623.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-05-01
IBM WebSphere Automation 1.7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 285648.
CVSS Score
4.4
EPSS Score
0.001
Published
2024-05-01