Ibm Business Process Manager Advanced

9 CVEs affecting Ibm Business Process Manager Advanced. Latest disclosed: 2020-05-29. Critical: 0, High: 2.

Top CVEs affecting Ibm Business Process Manager Advanced
CVESeverityScorePublishedSummary
CVE-2017-1539High8.82017-09-26IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to privilege escalation by not properly distinguishing internal group memberships from user regist…
CVE-2017-1527High8.12017-09-26IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could…
CVE-2017-1494Medium5.42017-12-20IBM Business Process Manager 8.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus a…
CVE-2017-1531Medium5.42017-09-26IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2017-1530Medium5.42017-09-26IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2017-1425Medium5.42017-09-26IBM Business Process Manager 8.0.1.1 and 8.5.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the…
CVE-2017-1424Medium5.42017-09-25IBM Business Process Manager 8.5.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus…
CVE-2017-1140Medium5.42017-06-08IBM Business Process Manager 8.0 and 8.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web…
CVE-2020-4490Medium5.32020-05-29IBM Business Automation Workflow 18 and 19, and IBM Business Process Manager 8.0, 8.5, and 8.6 could allow a remote attacker to bypass security restrictions, c…