Redhat Jbpm
4 CVEs affecting Redhat Jbpm. Latest disclosed: 2021-06-01. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-7545 | Medium | 6.5 | 2018-07-26 | It was discovered that the XmlUtils class in jbpmmigration 6.5 performed expansion of external parameter entities while parsing XML files. A remote attacker co… |
CVE-2013-6465 | Medium | 5.4 | 2017-12-19 | Multiple cross-site scripting (XSS) vulnerabilities in JBPM KIE Workbench 6.0.x allow remote authenticated users to inject arbitrary web script or HTML via vec… |
CVE-2021-20306 | Medium | 4.3 | 2021-06-01 | A flaw was found in the BPMN editor in version jBPM 7.51.0.Final. Any authenticated user from any project can see the name of Ruleflow Groups from other projec… |
CVE-2014-8125 | | 2015-04-21 | XML external entity (XXE) vulnerability in Drools and jBPM before 6.2.0 allows remote attackers to read arbitrary files or possibly have other unspecified impa… |