2 matches found
Security Bulletin: Reverse tabnabbing vulnerability in IBM Business Automation Workflow and IBM Business Process Manager (BPM) (CVE-2019-4425)
Summary A reverse tabnabbing vulnerability in IBM Business Automation Workflow and IBM BPM has been found. Vulnerability Details CVEID: CVE-2019-4425 DESCRIPTION: IBM Business Automation Workflow could allow a user to obtain highly sensitive information from another user by inserting links that...
CVE-2019-4425
CVE-2019-4425 affects IBM Business Automation Workflow (18.0.0.0–18.0.0.2) and IBM BPM components. The IBM security bulletin confirms a reverse tabnabbing information-disclosure issue where an attacker could cause a user to click a crafted link and potentially obtain sensitive information from an...