Medium Severity

Security Bulletin: Cross-site scripting vulnerability affect IBM Business Automation Workflow and IBM Business Process Manager (BPM) – CVE-2020-4530

Share this post:

IBM Business Process Manager and IBM Business Automation Workflow are vulnerable to a cross-site scripting attack. This vulnerability only affects BPM and BAW profiles of type “Advanced”.

Affected product(s) and affected version(s):

 

Affected Product(s) Version(s)
IBM Business Automation Workflow C.D.0
IBM Business Process Manager 8.0, 8.5, 8.6

 

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6332417

More stories

Security Bulletin: IBM Security Guardium is affected by Oracle MySQL vulnerabilities

Apr 16, 2021 8:02 pm EDT | Medium Severity

IBM Security Guardium has fixed this vulnerability ...read more


Security Bulletin: Vulnerability in Apache PDFBox affects Apache Solr shipped with IBM Operations Analytics – Log Analysis (CVE-2018-8036)

Apr 16, 2021 8:02 pm EDT | Medium Severity

There is a potential Resource Exhaustion vulnerability in Apache PDFBox that affects Apache Solr. ...read more