Rewterz

Rewterz Threat Alert – CryptBot Trojan – Active IOCs

February 27, 2023
Rewterz

Rewterz Threat Advisory – CVE-2022-40237 – IBM MQ for HPE NonStop Vulnerability

February 28, 2023

Rewterz Threat Advisory – CVE-2023-22860 – IBM Cloud Pak for Business Automation Vulnerability

Severity

Medium

Analysis Summary

CVE-2023-22860

IBM Cloud Pak for Business Automation is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Impact

  • Cross-Site Scripting

Indicators Of Compromise

CVE

  • CVE-2023-22860

Affected Vendors

IBM

Affected Products

  • IBM Cloud Pak for Business Automation 18.0.0
  • IBM Cloud Pak for Business Automation 18.0.1
  • IBM Cloud Pak for Business Automation 18.0.2
  • IBM Cloud Pak for Business Automation 19.0.1
  • IBM Cloud Pak for Business Automation 19.0.2
  • IBM Cloud Pak for Business Automation 19.0.3
  • IBM Cloud Pak for Business Automation 20.0.1
  • IBM Cloud Pak for Business Automation 20.0.2
  • IBM Cloud Pak for Business Automation 20.0.3
  • IBM Cloud Pak for Business Automation 21.0.1
  • IBM Cloud Pak for Business Automation 21.0.2
  • IBM Cloud Pak for Business Automation 21.0.3
  • IBM Cloud Pak for Business Automation 22.0.1

Remediation

Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.

IBM Security Advisory

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.