CVE-2024-28793
MEDIUM
Published 2024-05-28T12:00:47.899Z
Actions:
Expert Analysis
Professional remediation guidance
Get tailored security recommendations from our analyst team for CVE-2024-28793. We'll provide specific mitigation strategies based on your environment and risk profile.
CVSS Score
V3.1
4.9
/10
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
Base Score Metrics
Exploitability: N/A
Impact: N/A
EPSS Score
v2025.03.14
0.001
probability
of exploitation in the wild
There is a 0.1% chance that this vulnerability will be exploited in the wild within the next 30 days.
Updated: 2025-06-25
Exploit Probability
Percentile: 0.349
Higher than 34.9% of all CVEs
Attack Vector Metrics
Impact Metrics
Description
IBM Engineering Workflow Management 7.0.2 and 7.0.3 is vulnerable to stored cross-site scripting. Under certain configurations, this vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 286830.
Available Exploits
No exploits available for this CVE.
Related News
No news articles found for this CVE.
Affected Products
Affected Versions:
References
Published: 2024-05-28T12:00:47.899Z
Last Modified: 2025-02-13T17:47:31.719Z
Copied to clipboard!