CVE-2019-4424

2019-08-20T20:15:00
ID CVE-2019-4424
Type cve
Reporter cve@mitre.org
Modified 2019-10-09T23:50:00

Description

IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, 18.0.0.2, 19.0.0.1, and 19.0.0.2 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 162770.