Ibm

Business Automation Workflow

48 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2021-29775

  • EPSS 0.16%
  • Published 28.06.2021 16:15:08
  • Last modified 21.11.2024 06:01:47

IBM Business Automation Workflow 19.0.03 and 20.0 and IBM Cloud Pak for Automation 20.0.3-IF002 and 21.0.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the inte...

4.3

CVE-2021-29751

  • EPSS 0.23%
  • Published 28.06.2021 16:15:08
  • Last modified 21.11.2024 06:01:44

IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Business Process Manager 8.5 and 8.6 could allow an authenticated user to obtain sensitive information about another user under nondefault configurations. IBM X-Force ID: 201779.

5.4

CVE-2020-4768

  • EPSS 0.11%
  • Published 11.02.2021 17:15:13
  • Last modified 21.11.2024 05:33:13

IBM Case Manager 5.2 and 5.3 and IBM Business Automation Workflow 18.0, 19.0, and 20.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality p...

5.5

CVE-2020-4794

  • EPSS 0.13%
  • Published 21.12.2020 18:15:16
  • Last modified 21.11.2024 05:33:16

IBM Automation Workstream Services 19.0.3, 20.0.1, 20.0.2, IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Business Process Manager 8.6 could allow an authenticated user to obtain sensitive information or cuase a denial of service due t...

5.5

CVE-2020-4900

  • EPSS 0.05%
  • Published 30.11.2020 16:15:13
  • Last modified 21.11.2024 05:33:23

IBM Business Automation Workflow 19.0.0.3 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 190991.

5.4

CVE-2020-4672

  • EPSS 0.24%
  • Published 16.11.2020 17:15:13
  • Last modified 21.11.2024 05:33:06

IBM Business Automation Workflow 20.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure w...

5.3

CVE-2020-4531

  • EPSS 0.12%
  • Published 25.09.2020 17:15:13
  • Last modified 21.11.2024 05:32:51

IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Business Process Manager 8.0, 8.5, and 8.6 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This informatio...

5.4

CVE-2020-4530

  • EPSS 0.18%
  • Published 15.09.2020 14:15:14
  • Last modified 21.11.2024 05:32:51

IBM Business Automation Workflow C.D.0 and IBM Business Process Manager 8.0, 8.5, and 8.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionalit...

5.4

CVE-2020-4698

  • EPSS 0.22%
  • Published 08.09.2020 15:15:12
  • Last modified 21.11.2024 05:33:08

IBM Business Process Manager 8.5, 8.6 and IBM Business Automation Workflow 18.0, 19.0, and 20.0 are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended...

5.4

CVE-2020-4516

  • EPSS 0.06%
  • Published 08.09.2020 15:15:12
  • Last modified 21.11.2024 05:32:50

IBM Business Process Manager 8.5, 8.6 and IBM Business Automation Workflow 18.0, 19.0, and 20.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functi...