CVE-2024-41753 – This cross-site scripting vulnerability in IBM ... (How to Fix)

Q: What is the severity of CVE-2024-41753?

CVE-2024-41753 has a CVSS score of 6.1 (MEDIUM). This cross-site scripting vulnerability in IBM Cloud Pak for Business Automation allows unauthenticated attackers to inject malicious JavaScript into the web interface. This could lead to credential theft or session hijacking when users interact with the compromised interface. Organizations running affected versions of IBM Cloud Pak for Business Automation are at risk.

📋 TL;DR

This cross-site scripting vulnerability in IBM Cloud Pak for Business Automation allows unauthenticated attackers to inject malicious JavaScript into the web interface. This could lead to credential theft or session hijacking when users interact with the compromised interface. Organizations running affected versions of IBM Cloud Pak for Business Automation are at risk.

💻 Affected Systems

Products:

IBM Cloud Pak for Business Automation

Versions: 24.0.0 through 24.0.0 IF004 and 24.0.1 through 24.0.1 IF001

Operating Systems: All platforms running affected IBM Cloud Pak versions

Default Config Vulnerable: ⚠️ Yes

Notes: All deployments of affected versions are vulnerable by default.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers steal administrator credentials, gain full system access, and potentially compromise the entire business automation environment.

🟠

Likely Case

Session hijacking leading to unauthorized access to business automation data and functionality.

🟢

If Mitigated

Limited impact with proper input validation and output encoding controls in place.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

XSS vulnerabilities typically have low exploitation complexity, especially when unauthenticated.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Apply IBM Cloud Pak for Business Automation 24.0.0 IF005 or 24.0.1 IF002

Vendor Advisory: https://www.ibm.com/support/pages/node/7232197

Restart Required: Yes

Instructions:

1. Download the appropriate fix pack from IBM Fix Central. 2. Follow IBM's installation instructions for applying fix packs to Cloud Pak for Business Automation. 3. Restart affected services.

🔧 Temporary Workarounds

Web Application Firewall (WAF)

all

Deploy a WAF with XSS protection rules to filter malicious input.

Content Security Policy

all

Implement strict CSP headers to restrict script execution.

🧯 If You Can't Patch

Restrict network access to only trusted IP addresses
Implement strong authentication and session management controls

🔍 How to Verify

Check if Vulnerable:

Check IBM Cloud Pak version via administrative console or command line interface.

Check Version:

oc get pods -n <namespace> | grep automation

Verify Fix Applied:

Verify version is updated to 24.0.0 IF005 or 24.0.1 IF002 or later.

📡 Detection & Monitoring

Log Indicators:

Unusual JavaScript payloads in web request logs
Suspicious user agent strings

Network Indicators:

HTTP requests containing script tags or JavaScript code in parameters

SIEM Query:

web_request contains "<script>" OR web_request contains "javascript:"

📊 Metadata

CVE ID: CVE-2024-41753

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE: CWE-79

EPSS Score: 0.13% exploit probability (32th percentile)

Published: May 3, 2025

Last Updated: August 14, 2025

🔗 References

https://www.ibm.com/support/pages/node/7232197 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-41753, you might also want to check these:

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Cloud Pak For Business Automation by Ibm

Cloud Pak For Business Automation by Ibm

Cloud Pak For Business Automation by Ibm

Cloud Pak For Business Automation by Ibm

Cloud Pak For Business Automation by Ibm

Cloud Pak For Business Automation by Ibm

Cloud Pak For Business Automation by Ibm

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Web Application Firewall (WAF)

Content Security Policy

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities