2 matches found
Security Bulletin: Cross-Site Scripting vulnerability affect IBM Business Automation Workflow and IBM Business Process Manager (BPM) - CVE-2020-4557
Summary IBM Business Process Manager and IBM Business Automation Workflow are vulnerable to a cross-site scripting attack. Vulnerability Details CVEID: CVE-2020-4557 DESCRIPTION: IBM Business Automation Workflow and IBM Business Process Manager is vulnerable to cross-site scripting. This...
CVE-2020-4557
The CVE-2020-4557 issue affects IBM BPM versions 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, and 20.0, where cross-site scripting in the Web UI could allow embedding arbitrary JavaScript and potentially disclose credentials within a trusted session. Remediation documented by IBM ...