Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
business process manager vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2019-4149
IBM Business Automation Workflow V18.0.0.0 through V18.0.0.2 and IBM Business Process Manager V8.6.0.0 through V8.6.0.0 Cumulative Fix 2018.03, V8.5.7.0 through V8.5.7.0 Cumulative Fix 2017.06, and V8.5.6.0 through V8.5.6.0 CF2 is vulnerable to cross-site scripting. This vulnerab...
Ibm Business Process Manager 8.5.6.0
Ibm Business Process Manager 8.6.0.0
Ibm Business Process Manager 8.5.7.0
Ibm Business Automation Workflow
3.5
CVSSv2
CVE-2018-1384
IBM Business Process Manager 8.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID...
Ibm Business Process Manager 7.5.0.0
Ibm Business Process Manager 8.5.6.2
Ibm Business Process Manager 8.0.1.3
Ibm Business Process Manager 8.0.1.1
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 8.0.1.0
Ibm Business Process Manager 8.0.0.0
Ibm Business Process Manager 7.5.1.2
Ibm Business Process Manager 7.5.1.1
Ibm Business Process Manager 7.5.1.0
Ibm Business Process Manager 8.5.6.0
Ibm Business Process Manager 8.5.5.0
Ibm Business Process Manager 8.5.0.2
Ibm Business Process Manager 8.5.0.1
Ibm Business Process Manager 8.5.6.1
Ibm Business Process Manager 8.5.0.0
Ibm Business Process Manager 8.0.1.2
Ibm Business Process Manager 7.5.0.1
Ibm Websphere Enterprise Service Bus 7.0.0.5
Ibm Websphere Enterprise Service Bus 7.5.1.1
Ibm Websphere Enterprise Service Bus 7.5.1.2
Ibm Websphere Enterprise Service Bus 7.5.1.0
5
CVSSv2
CVE-2018-1885
IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, and 18.0.0.2 could allow an unauthenticated malicious user to obtain sensitve information using a specially cracted HTTP request. IBM X-Force ID: 152020.
Ibm Business Automation Workflow 18.0.0.2
Ibm Business Automation Workflow 18.0.0.0
Ibm Business Automation Workflow 18.0.0.1
Ibm Business Process Manager 8.6.0.0
Ibm Business Process Manager Enterprise Service Bus 8.6
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 8.5.5.0
Ibm Business Process Manager
Ibm Business Process Manager 8.5.6.0
Ibm Websphere Enterprise Service Bus
4
CVSSv2
CVE-2018-1997
IBM Business Automation Workflow and Business Process Manager 18.0.0.0, 18.0.0.1, and 18.0.0.2 are vulnerable to a denial of service attack. An authenticated attacker might send a specially crafted request that exhausts server-side memory. IBM X-Force ID: 154774.
Ibm Business Automation Workflow 18.0.0.2
Ibm Business Automation Workflow 18.0.0.1
Ibm Business Automation Workflow 18.0.0.0
Ibm Business Process Manager 8.6.0.0
Ibm Business Process Manager 8.5.5.0
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 8.5.6.0
3.5
CVSSv2
CVE-2017-1425
IBM Business Process Manager 8.0.1.1 and 8.5.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. ...
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 8.0.1.1
4
CVSSv2
CVE-2016-0349
IBM Business Process Manager 8.5.6 up to and including 8.5.6.2 and 8.5.7 prior to 8.5.7.CF201606 allows remote authenticated users to bypass intended access restrictions and update process-instance variables via a REST API call.
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 8.5.6.0
3.5
CVSSv2
CVE-2021-38893
IBM Business Process Manager 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, 20.0 and 21.0 are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti...
Ibm Business Automation Workflow 18.0.0.0
Ibm Business Automation Workflow 19.0.0.0
Ibm Business Automation Workflow 20.0.0.0
Ibm Business Automation Workflow 21.0.0.0
Ibm Business Process Manager 8.5.0.0
Ibm Business Process Manager 8.5.5.0
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 8.6.0.0
Ibm Workflow Process Service 21.0.2
5.8
CVSSv2
CVE-2020-4490
IBM Business Automation Workflow 18 and 19, and IBM Business Process Manager 8.0, 8.5, and 8.6 could allow a remote malicious user to bypass security restrictions, caused by a reverse tabnabbing flaw. An attacker could exploit this vulnerability and redirect a vitcim to a phishin...
Ibm Business Automation Workflow 18.0.0.0
Ibm Business Automation Workflow 19.0.0.0
Ibm Business Process Manager 8.0.0.0
Ibm Business Process Manager 8.5.0.0
Ibm Business Process Manager 8.6.0.0
4
CVSSv2
CVE-2020-4446
IBM Business Process Manager 8.0, 8.5, and 8.6 and IBM Business Automation Workflow 18.0 and 19.0 could allow a remote malicious user to bypass security restrictions, caused by the failure to perform insufficient authorization checks. IBM X-Force ID: 181126.
Ibm Business Automation Workflow
Ibm Business Process Manager
Ibm Business Process Manager 8.6.0.0
3.5
CVSSv2
CVE-2020-4530
IBM Business Automation Workflow C.D.0 and IBM Business Process Manager 8.0, 8.5, and 8.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to crede...
Ibm Business Automation Workflow
Ibm Business Process Manager
Ibm Business Process Manager 8.6.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »