IBM Websphere Automation
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in IBM Websphere Automation.
By the Year
In 2026 there have been 0 vulnerabilities in IBM Websphere Automation. Websphere Automation did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 3 | 6.80 |
| 2023 | 0 | 0.00 |
| 2022 | 1 | 6.50 |
It may take a day or so for new Websphere Automation vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Websphere Automation Security Vulnerabilities
IBM WebSphere Automation Swagger UI Remote Code Execution Vulnerability
CVE-2024-54181
7.2 - High
- December 30, 2024
IBM WebSphere Automation 1.7.5 could allow a remote privileged user, who has authorized access to the swagger UI, to execute arbitrary code. Using specially crafted input, the user could exploit this vulnerability to execute arbitrary code on the system.
Shell injection
IBM WebSphere Automation 1.7.0 CSV Injection Remote Cmd Exec
CVE-2024-28764
7.8 - High
- May 01, 2024
IBM WebSphere Automation 1.7.0 could allow an attacker with privileged access to the network to conduct a CSV injection. An attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 285623.
CSV Injection
IBM WebSphere Automation 1.7.0 XSS: UI JavaScript Injection, Credential Exposure
CVE-2024-28775
5.4 - Medium
- May 01, 2024
IBM WebSphere Automation 1.7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 285648.
XSS
Local Attacker Can Forge Outbound Connections via IBM WebSphere Automation 1.4.2
CVE-2022-43900
6.5 - Medium
- December 01, 2022
IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.2 could provide a weaker than expected security. A local attacker can create an outbound network connection to another system. IBM X-Force ID: 240827.
authentification
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Websphere Automation or by IBM? Click the Watch button to subscribe.
