Medium Severity

Security Bulletin: An Apache Commons Compress vulnerability has been identified with the embedded IBM FileNet P8 Content Platform Engine component in IBM Business Process Manager and IBM Business Automation Workflow

Share this post:

An Apache Commons Compress vulnerability has been identified with the embeded IBM FileNet P8 Content Platform Engine component, specifically with the Administration Console for Content Platform Engine application, in IBM Business Process Manager and IBM Business Automation Workflow.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Business Process Manager 8.5.7
IBM Business Automation Workflow 18.0.0.0
IBM Business Automation Workflow 18.0.0.1

Note: CVE 2019-12402, which is specifically for an IBM Administration Console for Content Platform Engine that is part of the embedded Content Platform Engine, does not affect Business Automation Workflow V18.0.0.2 or later versions.

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1283920

More stories

Security Bulletin: IBM Security Identity Manager Virtual Appliance deprecated Self Service UI contains Struts V1 (CVE-2016-1182)

Jun 17, 2021 8:00 pm EDT | Medium Severity

IBM Security Identity Manager Virtual Appliance made code changes to remove the deprecated function and its associated Struts V1 code library. ...read more


Security Bulletin: IBM Security Identity Manager deprecated Self Service UI contains Struts V1 (CVE-2016-1182)

Jun 17, 2021 8:00 pm EDT | Medium Severity

IBM Security Identity Manager made code changes to remove the deprecated function and its related Struts V1 code library. ...read more


Security Bulletin: IBM Resilient SOAR is vulnerable to command injection (CVE-2021-20527)

Jun 17, 2021 8:00 pm EDT | Medium Severity

It was possible for a privileged user to inject malicious commands that could be executed as another user. This issue has been addressed. ...read more