Business Process Manager Enterprise Service Bus

business_process_manager_enterprise_service_bus

Vendor: Ibm • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-1885 1Ibm 4Business Automation Workflow Business Process ManagerBusiness Process Manager Enterprise Service Bus+1 more Nov 21, 2024 Apr 8, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, and 18.0.0.2 could allow an unauthenticated attacker to obtain sensitve information using a specially cracted HTTP request. IBM X-Force ID: 152020.
CVE-2018-1384 1Ibm 4Business Process Manager Business Process Manager Enterprise Service BusWebsphere Enterprise Service Bus+1 more Nov 21, 2024 Mar 30, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 IBM Business Process Manager 8.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to cre...Show more IBM Business Process Manager 8.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 138135.Show less
CVE-2017-1765 1Ibm 2Business Process Manager Business Process Manager Enterprise Service Bus Nov 21, 2024 Mar 30, 2018 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 IBM Business Process Manager 8.6 could allow an authenticated user with special privileges to reveal sensitive information about the application server. IBM X-Force ID: 136150.
CVE-2017-1756 1Ibm 3Business Process Manager Business Process Manager Enterprise Service BusWebsphere Nov 21, 2024 Mar 30, 2018 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 IBM Business Process Manager 8.6 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 135856.