IBM Business Process Manager 8.5.7.0 up to and including 8.5.7.0 2017.06, 8.6.0.0 up to and including 8.6.0.0 CF2018.03, and IBM Business Automation Workflow 18.0.0.1 up to and including 19.0.0.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 171254.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm business process manager 8.5.7.0 |
||
ibm business process manager 8.6.0.0 |
||
ibm business automation workflow |