CVE-2020-4516 (business_automation_workflow, business_process_manager)

Posted by Cyberthreat Blog | Sep 13, 2020 | CVE Validated | 0 |

IBM Business Process Manager 8.5, 8.6 and IBM Business Automation Workflow 18.0, 19.0, and 20.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 182371.

CVE-2020-4516 (business_automation_workflow, business_process_manager)

About The Author

Cyberthreat Blog

Share This

Share This

CVE-2020-4516 (business_automation_workflow, business_process_manager)

About The Author

Cyberthreat Blog

Related Posts

CVE-2014-8134 (evergreen, linux, linux_kernel, opensuse, suse_linux_enterprise_server, ubuntu_linux)

CVE-2017-3258 (debian_linux, enterprise_linux_desktop, enterprise_linux_eus, enterprise_linux_server, enterprise_linux_server_aus, enterprise_linux_server_tus, enterprise_linux_workstation, mariadb, mysql)

CVE-2011-4675 (widelands)

CVE-2018-1125 (debian_linux, leap, procps-ng, ubuntu_linux)

Share This

Share This