From c1733b8d490af78d109a94cc1dd7e199eded5ddd Mon Sep 17 00:00:00 2001
From: David Mueller <David.Mueller1@ibm.com>
Date: Wed, 5 Jun 2024 10:49:29 -0400
Subject: [PATCH] 24006 CVE

#7378
---
 modules/ROOT/pages/security-vulnerabilities.adoc | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/modules/ROOT/pages/security-vulnerabilities.adoc b/modules/ROOT/pages/security-vulnerabilities.adoc
index e2578d975..133b60f33 100644
--- a/modules/ROOT/pages/security-vulnerabilities.adoc
+++ b/modules/ROOT/pages/security-vulnerabilities.adoc
@@ -28,6 +28,13 @@ The `CWWKF0012I` message uses the word "installed", but it lists features that a
 |===
 |CVE |CVSS score by X-Force® |Vulnerability assessment |Versions affected |Version fixed |Notes
 
+|http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22354[CVE-2024-22354]
+|7.0
+|XML External Entity (XXE) injection
+|17.0.0.3 - 24.0.0.5
+|24.0.0.6
+|
+
 |http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27268[CVE-2024-27268]
 |5.9
 |Denial of service