Unrated severityNVD Advisory· Published May 31, 2022· Updated Sep 16, 2024
CVE-2022-22361
CVE-2022-22361
Description
IBM Business Automation Workflow traditional 21.0.1 through 21.0.3, 20.0.0.1 through 20.0.0.2, 19.0.0.1 through 19.0.0.3, 18.0.0.0 through 18.0.0.1, IBM Business Automation Workflow containers V21.0.1 - V21.0.3 20.0.0.1 through 20.0.0.2, IBM Business Process Manager 8.6.0.0 through 8.6.0.201803, and 8.5.0.0 through 8.5.0.201706 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5V21.0.1 - V21.0.3, 20.0.0.1 - 20.0.0.2+ 2 more
- (no CPE)range: V21.0.1 - V21.0.3, 20.0.0.1 - 20.0.0.2
- (no CPE)range: 21.0.1 - 21.0.3, 20.0.0.1 - 20.0.0.2, 19.0.0.1 - 19.0.0.3, 18.0.0.0 - 18.0.0.1
- (no CPE)range: 18.0.0.0
8.6.0.0 - 8.6.0.201803, 8.5.0.0 - 8.5.0.201706+ 1 more
- (no CPE)range: 8.6.0.0 - 8.6.0.201803, 8.5.0.0 - 8.5.0.201706
- (no CPE)range: 8.6.0.0
Patches
Vulnerability mechanics
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/220784mitrevdb-entryx_refsource_XF
- www.ibm.com/support/pages/node/6590411mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.