How severe is CVE-2020-4794?

Medium severity. CVSS v3 base score is 5.4 out of 10.

Vulnerability in Ibm Automation Workstream Services

CVE-2020-4794

IBM Automation Workstream Services 19.0.3, 20.0.1, 20.0.2, IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Business Process Manager 8.6 could allow an authenticated user to obtain sensitive information or cuase a denial of se…

EPSS: 0.001 (31.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.4 (Medium). Vector: CVSS:3.0/A:L/I:N/C:L/AC:L/PR:L/S:U/AV:N/UI:N/RC:C/E:U/RL:O.

Affected products

Ibm Automation Workstream Services — versions 19.0.3, 20.0.1, 20.0.2
Ibm Business Automation Workflow — versions 19.0, 20.0, 18.0
Ibm Business Process Manager — versions 8.6

References

www.ibm.com/support/pages/node/6359463 (x_refsource_CONFIRM)
ibm-icp4a-cve20204794-input-validation (189445) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2020-4794?: CVE-2020-4794 is a medium-severity vulnerability in Ibm Automation Workstream Services. CVSS score: 5.4/10. Published 2020-12-21.
How severe is CVE-2020-4794?: Medium severity. CVSS v3 base score is 5.4 out of 10.