2 matches found
Security Bulletin: XML External Entity Injection vulnerability affects IBM Business Automation Workflow and IBM Business Process Manager (BPM) - CVE-2021-20482
Summary IBM Business Process Manager and IBM Business Automation Workflow are vulnerable to a XML External Entity Injection attack. Vulnerability Details CVEID: CVE-2021-20482 DESCRIPTION: IBM Business Automation Workflow is vulnerable to an XML External Entity Injection XXE attack when processin...
CVE-2021-20482
The CVE-2021-20482 issue affects IBM Cloud Pak for Automation 20.0.2 and 20.0.3 IF002. It is an XML External Entity Injection (XXE) vulnerability in XML data processing caused by improper handling of external entities, allowing a remote attacker to potentially expose sensitive information or cons...