Security Bulletin: Multiple Vulnerabilities in IBM Cloud Pak for Network...

Security Bulletin: Multiple Vulnerabilities in IBM Cloud Pak for Network Automation

May 3, 2025 invoker category_cve

Vulnerability Details

Basic Information

Title	Security Bulletin: Multiple Vulnerabilities in IBM Cloud Pak for Network Automation
Type	ibm
Published	2025-05-03T22:07:08
Last Seen	2025-05-04T02:56:40
CVSS Score	9.8 (CRITICAL)

CVSS v3 Details

Attack Vector	NETWORK
Attack Complexity	LOW
Privileges Required	NONE
User Interaction	NONE
Scope	UNCHANGED
Confidentiality Impact	HIGH
Integrity Impact	HIGH
Availability Impact	HIGH

CVE Information

CVE IDs	CVE-2024-12798, CVE-2024-12801, CVE-2024-21538, CVE-2024-24790, CVE-2024-3596, CVE-2024-38821, CVE-2024-45296, CVE-2024-45336, CVE-2024-45337, CVE-2024-50379, CVE-2024-52316, CVE-2024-52798, CVE-2024-55565, CVE-2024-56337, CVE-2025-21502
CWE
Bulletin Family	software

Description

Summary Multiple vulnerabilities were addressed in IBM Cloud Pak for Network Automation 2.7.8 Vulnerability Details CVEID:CVE-2024-24790 DESCRIPTION: An unspecified error related to various Is methods (IsPrivate, IsLoopback, etc) did not work…

Impact Assessment

Base Score	9.8
Severity	CRITICAL

View full CVE details