Security vulnerabilities: IBM Business Automation Workflow can leak access data
IBM Business Automation Workflow and IBM MQ are vulnerable. Security updates close several software vulnerabilities.
(Image: Artur Szczybylo/Shutterstock.com)
Attackers can exploit several vulnerabilities in IBM Business Automation Workflow and the IBM MQ middleware software. The vulnerabilities have now been closed in current versions.
The dangers
Admins can find information on the secured Business Automation Workflow versions in the articles linked below this message. There are several of these for the container and traditional versions.
Attackers can use crafted URLs to exploit a vulnerability (CVE-2025-27152"high") in the HTTP client Axios. This results in a server-side request forgery attack (SSRF), allowing access to credentials that are actually protected. DoS attacks (CVE-2025-1838"medium") are also possible.
Videos by heise
This is also the case with the MQ vulnerability (CVE-2025-27365"medium"). MQ is equipped against this attack in versions 9.4.0.11 and 9.4.2.1, the developers assure in a warning message.
- IBM Business Automation Workflow - CVE-2025-27789, CVE-2024-57965, CVE-2025-27152, CVE-2024-55565
- IBM Business Automation Workflow - CVE-2025-1838
- IBM Business Automation Workflow - CVE-2025-1495
(des)
