Medium Severity

Security Bulletin: Cross-site scripting vulnerability affect IBM Business Automation Workflow and IBM Business Process Manager (BPM) – CVE-2020-4530

Share this post:

IBM Business Process Manager and IBM Business Automation Workflow are vulnerable to a cross-site scripting attack. This vulnerability only affects BPM and BAW profiles of type “Advanced”.

Affected product(s) and affected version(s):


Affected Product(s) Version(s)
IBM Business Automation Workflow C.D.0
IBM Business Process Manager 8.0, 8.5, 8.6


Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin:

More stories

Security Bulletin: IBM Security Guardium is affected by Oracle MySQL vulnerabilities

Apr 16, 2021 8:02 pm EDT | Medium Severity

IBM Security Guardium has fixed this vulnerability more

Security Bulletin: Vulnerability in Apache PDFBox affects Apache Solr shipped with IBM Operations Analytics – Log Analysis (CVE-2018-8036)

Apr 16, 2021 8:02 pm EDT | Medium Severity

There is a potential Resource Exhaustion vulnerability in Apache PDFBox that affects Apache Solr. more