3 matches found
Security Bulletin: Information leakage vulnerability affect IBM Business Automation Workflow - CVE-2021-20358
Summary IBM Business Automation Workflow may leak sensitive information in trace when emitting events for Business Automation Insights. Vulnerability Details CVEID: CVE-2021-20358 DESCRIPTION: IBM Business Automation Insights stores potentially sensitive information in clear text in API connectio...
CVE-2021-20358
creationtimestamp| type| source ---|---|--- 2021-02-08 18:39:33+00:00| seen| https://t.me/cibsecurity/23217...
CVE-2021-20358
CVE-2021-20358 affects IBM Cloud Pak for Automation 20.0.3 and 20.0.2-IF002, where potentially sensitive information is stored in clear text in API connection log files. An attacker with log-read permissions could obtain this data. The IBM bulletin confirms an information-disclosure risk in the l...