{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-10T06:41:21.253","vulnerabilities":[{"cve":{"id":"CVE-2024-49824","sourceIdentifier":"psirt@us.ibm.com","published":"2025-01-18T16:15:39.183","lastModified":"2025-08-18T17:56:28.077","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Robotic Process Automation 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18 and \n\nIBM Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18\n\ncould allow an authenticated user to perform unauthorized actions as a privileged user due to improper validation of client-side security enforcement."},{"lang":"es","value":"IBM Robotic Process Automation 21.0.0 a 21.0.7.18 y 23.0.0 a 23.0.18 e IBM Robotic Process Automation for Cloud Pak 21.0.0 a 21.0.7.18 y 23.0.0 a 23.0.18 podría permitir que un usuario autenticado realice acciones no autorizadas como un usuario privilegiado debido a una validación incorrecta de la aplicación de la seguridad del lado del cliente."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Secondary","description":[{"lang":"en","value":"CWE-602"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:robotic_process_automation:*:*:*:*:*:*:*:*","versionStartIncluding":"21.0.0","versionEndExcluding":"21.0.7.19","matchCriteriaId":"F17E6A3B-D7B8-4AAE-88B8-9BF14A81D538"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:robotic_process_automation:*:*:*:*:*:*:*:*","versionStartIncluding":"23.0.0","versionEndExcluding":"23.0.19","matchCriteriaId":"6E64436B-5CE3-4DF8-9808-5BBD00D20506"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:robotic_process_automation_for_cloud_pak:*:*:*:*:*:*:*:*","versionStartIncluding":"21.0.0","versionEndExcluding":"21.0.7.19","matchCriteriaId":"EF26EA49-39D9-4943-9F1E-70DE28273743"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:robotic_process_automation_for_cloud_pak:*:*:*:*:*:*:*:*","versionStartIncluding":"23.0.0","versionEndExcluding":"23.0.19","matchCriteriaId":"02C6BCC6-21FF-4F31-ABB4-CF86020ABF3F"}]}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7177587","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]}]}}]}