← Back to CVE List

CVE-2024-49348

Published: 2025-02-05T12:15Z
Last Modified: 2025-02-05T12:15Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2 allows restricting access to organizational data to valid contexts. The fact that tasks of type comment can be reassigned via API implicitly grants access to user queries in an unexpected context. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt