Business Process Manager@7.5.0.0 Security Vulnerabilities and Issues — Business Process Manager@7.5.0.0 CVE List

Lucene search

IbmBusiness Process Manager7.5.0.0

2 matches found

CVE•added 2019/08/20 8:15 p.m.•47 views

CVE-2019-4424

IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, 18.0.0.2, 19.0.0.1, and 19.0.0.2 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ...

8.2CVSS7.9AI score0.0037EPSS

CVE•added 2019/04/08 3:29 p.m.•42 views

CVE-2018-1885

IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, and 18.0.0.2 could allow an unauthenticated attacker to obtain sensitve information using a specially cracted HTTP request. IBM X-Force ID: 152020.

5.3CVSS5AI score0.00202EPSS