2 matches found
Security Bulletin: Open redirect vulnerability in IBM Business Process Manager (CVE-2017-1159)
Summary IBM Business Process Manager is vulnerable to open redirects, caused by improper validation of user-supplied input. Vulnerability Details CVEID: CVE-2017-1159 DESCRIPTION: IBM Business Process Manager could allow a remote attacker to conduct phishing attacks, using an open redirect attack...
CVE-2017-1159
CVE-2017-1159 affects IBM Business Process Manager (BPM) 8.0 and 8.5, where improper validation of user-supplied input enables an open redirect that can be used for phishing (spoofed URL leading to a malicious site). The IBM bulletin documents affected BPM versions (V7.5.x to V8.5.x) and provides...