CVE-2024-41753 – IBM Cloud Pak for Business Automation Cross-Site Scripting Vulnerability

May 3, 2025

CVE ID : CVE-2024-41753

Published : May 3, 2025, 4:15 p.m. | 1 hour, 16 minutes ago

Description : IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF004 and 24.0.1 through 24.0.1 IF001 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Severity: 6.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-58134 – Mojolicious Default HMAC Session Secret Vulnerability

Next Article CVE-2025-4237 – PCMan FTP Server MDELETE Command Handler Buffer Overflow

IBM launches new integration to help unify AI security and governance

Meet Accessible UX Research, A Brand-New Smashing Book

Modernizing your approach to governance, risk and compliance

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

With Windows 10 circling the drain, Windows 11 sees a long-overdue surge

This PC app boosts FPS in any game on any GPU for only $7 — and it just got a major update

Sam Altman claims Meta is trying to poach OpenAI staffers with $100 million bonuses, but “none of our best people have decided to take them up on that”

Why Inclusive Design Solutions Are important for Accessibility

Why Inclusive Design Solutions Are important for Accessibility

Microsoft Copilot for Power Platform

Integrate Coveo Atomic CLI-Based Hosted Search Page into Adobe Experience Manager (AEM)

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

With Windows 10 circling the drain, Windows 11 sees a long-overdue surge

This PC app boosts FPS in any game on any GPU for only $7 — and it just got a major update

CVE-2024-41753 – IBM Cloud Pak for Business Automation Cross-Site Scripting Vulnerability

CISA Flags CVE-2023-0386 as Actively Exploited Linux Kernel Privilege Escalation Threat

Critical Auth Bypass Vulnerability (CVE-2025-51381) Found in KAON KCM3100 Gateways

CVE-2025-37088 – HPE Cray Data Virtualization Service (DVS) Authentication Bypass Vulnerability

Amazon EC2 SSM Agent Flaw Patched After Privilege Escalation via Path Traversal

IBM Cloud login breaks for second time this week and Big Blue isn’t saying why

CVE-2025-44022 – Vvveb CMS Remote Code Execution

Obsidian publishes Avowed roadmap, with the Xbox RPG getting arachnophobia mode, New Game Plus, and more

The Developer’s Shortcut To Your Udemy-like Platform

Critical ABB EIBPORT Flaw: Update Now to Prevent Building Automation Hijacks!

CVE-2025-37827 – Here is a title for the vulnerability: “btrfs: RAID1 Profile Write Pointer Offset Mismatch NULL Pointer Dereference”

CVE-2024-41753 – IBM Cloud Pak for Business Automation Cross-Site Scripting Vulnerability

Related Posts