Lucene search
IbmCVELIST:CVE-2014-4802HistoryOct 07, 2014 - 10:00 a.m.
CVE-2014-4802
2014-10-0710:00:00
ibm
www.cve.org
3
The Saved Search Admin component in the Process Admin Console in IBM Business Process Manager (BPM) 8.0 through 8.5.5 does not properly restrict task and instance listings in result sets, which allows remote authenticated users to bypass authorization checks and obtain sensitive information by executing a saved search.
Related
cve
cve
CVE-2014-4802
2014-10-07 10:55:04
ibm
ibm
nvd
nvd
CVE-2014-4802
2014-10-07 10:55:04
prion
prion
Authorization
2014-10-07 10:55:00