3.5
CVSSv2

CVE-2019-4425

Published: 20/08/2019 Updated: 24/08/2020
CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8
CVSS v3 Base Score: 5.7 | Impact Score: 3.6 | Exploitability Score: 2.1
Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N

Vulnerability Summary

IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, and 18.0.0.2 could allow a user to obtain highly sensitive information from another user by inserting links that would be clicked on by unsuspecting users. IBM X-Force ID: 162771.

Vulnerability Trend

Vendor Advisories

A reverse tabnabbing vulnerability in IBM Business Automation Workflow and IBM BPM has been found ...