Vulnerability in Ibm Business Process Manager
CVE-2017-1756
IBM Business Process Manager 8.6 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 135856.
EPSS: 0.001 (17.4th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 4.0 (Medium). Vector: CVSS:3.0/A:N/AC:L/AV:L/C:L/I:N/PR:N/S:U/UI:N.
Affected products
- Ibm Business Process Manager — versions 8.6
References
- exchange.xforce.ibmcloud.com/vulnerabilities/135856 (x_refsource_MISC)
- 103589 (vdb-entry, x_refsource_BID)
- www.ibm.com/support/docview.wss (x_refsource_CONFIRM)
Frequently asked questions
- What is CVE-2017-1756?
- CVE-2017-1756 is a medium-severity vulnerability in Ibm Business Process Manager. CVSS score: 4.0/10. Published 2018-03-30.
- How severe is CVE-2017-1756?
- Medium severity. CVSS v3 base score is 4.0 out of 10.