Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm business process manager 8.5.7.0 vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2017-1424
IBM Business Process Manager 8.5.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...
Ibm Business Process Manager 8.5.7.0
312
VMScore
CVE-2017-1140
IBM Business Process Manager 8.0 and 8.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Business Process Manager 8.5.6.0
Ibm Business Process Manager 8.5.0.0
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 8.0.1.0
Ibm Business Process Manager 8.0.1.1
Ibm Business Process Manager 8.5.0.2
Ibm Business Process Manager 8.5.5.0
Ibm Business Process Manager 8.0.1.3
Ibm Business Process Manager 8.5.0.1
Ibm Business Process Manager 8.0.0.0
Ibm Business Process Manager 8.0.1.2
312
VMScore
CVE-2016-9731
IBM Business Process Manager is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Business Process Manager 8.5.7.0
312
VMScore
CVE-2016-3056
Cross-site scripting (XSS) vulnerability in Business Space in IBM Business Process Manager 7.5 up to and including 7.5.1.2, 8.0 up to and including 8.0.1.3, and 8.5 prior to 8.5.7.0 CF2016.09 allows remote authenticated users to inject arbitrary web script or HTML via crafted con...
Ibm Business Process Manager 8.5.5.0
Ibm Business Process Manager 7.5.0.0
Ibm Business Process Manager 8.5.6.2
Ibm Business Process Manager 8.5.0.1
Ibm Business Process Manager 8.0.1.2
Ibm Business Process Manager 8.0.1.3
Ibm Business Process Manager 8.5.0.2
Ibm Business Process Manager 7.5.1.0
Ibm Business Process Manager 8.0.0.0
Ibm Business Process Manager 8.5.0.0
Ibm Business Process Manager 7.5.1.1
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 7.5.0.1
Ibm Business Process Manager 8.5.6.0
Ibm Business Process Manager 8.0.1.0
Ibm Business Process Manager 7.5.1.2
Ibm Business Process Manager 8.0.1.1
312
VMScore
CVE-2016-5901
Cross-site scripting (XSS) vulnerability in a test page in IBM Business Process Manager Advanced 8.5.6.0 up to and including 8.5.7.0 before cumulative fix 2016.09 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Business Process Manager 8.5.6.2
Ibm Business Process Manager 8.5.6.1
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 8.5.6.0
187
VMScore
CVE-2017-1756
IBM Business Process Manager 8.6 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 135856.
Ibm Business Process Manager 8.5.5.0
Ibm Business Process Manager 8.5.6.2
Ibm Business Process Manager 8.5.0.1
Ibm Business Process Manager 8.0.1.3
Ibm Business Process Manager 7.5.0.0
Ibm Business Process Manager 7.5.1.2
Ibm Business Process Manager 8.5.0.2
Ibm Business Process Manager 7.5.1.0
Ibm Business Process Manager 7.5.0.1
Ibm Business Process Manager 7.5.1.1
Ibm Business Process Manager 8.0.0.0
Ibm Business Process Manager 8.0.1.2
Ibm Business Process Manager 8.5.0.0
Ibm Business Process Manager 8.5.6.1
Ibm Business Process Manager 8.0.1.1
Ibm Business Process Manager 8.0.1.0
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 8.5.6.0
Ibm Business Process Manager 8.6.0.0
Ibm Business Process Manager Enterprise Service Bus 8.6.0.0
Ibm Websphere 7.2.0.2
Ibm Websphere 7.2.0.5
169
VMScore
CVE-2017-1346
IBM Business Process Manager 7.5, 8.0, and 8.5 temporarily stores files in a temporary folder during offline installs which could be read by a local user within a short timespan. IBM X-Force ID: 126461.
Ibm Business Process Manager 8.5.5.0
Ibm Business Process Manager 8.5.6.1
Ibm Business Process Manager 7.5.0.0
Ibm Business Process Manager 8.5.6.2
Ibm Business Process Manager 8.5.0.1
Ibm Business Process Manager 8.0.1.2
Ibm Business Process Manager 8.0.1.3
Ibm Business Process Manager 8.5.0.2
Ibm Business Process Manager 7.5.1.0
Ibm Business Process Manager 8.0.0.0
Ibm Business Process Manager 8.5.0.0
Ibm Business Process Manager 7.5.1.1
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 7.5.0.1
Ibm Business Process Manager 8.5.6.0
Ibm Business Process Manager 8.0.1.0
Ibm Business Process Manager 7.5.1.2
Ibm Business Process Manager 8.0.1.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4