Lucene search
China National Vulnerability DatabaseCNVD-2024-16921HistoryMar 26, 2024 - 12:00 a.m.
IBM Cloud Pak for Automation CSV Injection Vulnerability
2024-03-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
ibm
cloud pak
automation
csv
injection
vulnerability
intelligent software platform
international business machines
pre-integrated
low-code tools
cloud environments
validation
exploited
attacker
arbitrary commands
IBM Cloud Pak for Automation is an intelligent software platform for building automation applications in cloud environments from International Business Machines (IBM). The platform uses pre-integrated automation technologies and low-code tools to design, build and run automation applications and services on any cloud. A CSV injection vulnerability exists in IBM Cloud Pak for Automation that stems from not properly validating the contents of a CSV file, which could be exploited by an attacker to execute arbitrary commands on a system.
Related
prion
prion
Input validation
2024-03-14 23:45:51
nvd
nvd
CVE-2023-35899
2024-03-21 02:47:58
cve
cve
CVE-2023-35899
2024-03-21 02:47:58
cvelist
cvelist
CVE-2023-35899 IBM Cloud Pak for Automation CSV injection
2024-03-05 18:55:44
vulnrichment
vulnrichment
CVE-2023-35899 IBM Cloud Pak for Automation CSV injection
2024-03-05 18:55:44
