{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-03T11:50:56.391","vulnerabilities":[{"cve":{"id":"CVE-2024-41753","sourceIdentifier":"psirt@us.ibm.com","published":"2025-05-03T16:15:19.150","lastModified":"2025-08-14T01:51:25.910","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF004 and 24.0.1 through 24.0.1 IF001 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session."},{"lang":"es","value":"IBM Cloud Pak for Business Automation 24.0.0 a 24.0.0 IF004 y 24.0.1 a 24.0.1 IF001 son vulnerables a ataques de cross-site scripting. Esta vulnerabilidad permite a un atacante no autenticado incrustar código JavaScript arbitrario en la interfaz web, alterando así la funcionalidad prevista y pudiendo provocar la divulgación de credenciales en una sesión de confianza."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:-:*:*:*:*:*:*","matchCriteriaId":"EF879B84-21B0-4FD4-AD2E-7F29EBDD218A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:interim_fix_001:*:*:*:*:*:*","matchCriteriaId":"496D1A48-3403-471F-AD07-AEC7E5000AD8"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:interim_fix_002:*:*:*:*:*:*","matchCriteriaId":"AA215EC3-DDFE-494D-862C-35CA30D9BEDE"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:interim_fix_003:*:*:*:*:*:*","matchCriteriaId":"969ED94C-DB65-482F-B8B8-251B56DE264D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:interim_fix_004:*:*:*:*:*:*","matchCriteriaId":"D1810412-5987-4F53-A81E-096A4F0187B5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.1:-:*:*:*:*:*:*","matchCriteriaId":"F68528C5-034B-4B2C-8745-B969B14B52C5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.1:interim_fix_001:*:*:*:*:*:*","matchCriteriaId":"EADE80E3-4E60-4154-A559-93E2325D799A"}]}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7232197","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]}]}}]}