Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-66267
HistoryMar 22, 2022 - 12:00 a.m.

IBM Business Automation Workflow and Business Process Manager Information Disclosure Vulnerability

2022-03-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
16
ibm
workflow
process manager
information disclosure
vulnerability
automation
workflow management
compliance management
user credentials
plaintext
privileged attackers
security

EPSS

0.001

Percentile

23.7%

JSON

IBM Business Automation Workflow is a set of workflow automation solutions from IBM in the United States. The product is primarily used for workflow management, compliance management, and has features such as workflow visibility and scalability.IBM Business Automation Workflow and Business Process Manager have an information disclosure vulnerability that stems from the fact that IBM Business Automation Workflow and IBM Business Process Manager affected versions store user credentials in plaintext, which can be exploited by privileged attackers to read these credentials.

Related

prion 1
cvelist 1
cve 1
ibm 2
nvd 1
prion
prion
Code injection
2022-03-18 16:15:00
cvelist
cvelist
CVE-2021-39046
2022-03-18 15:40:16
cve
cve
CVE-2021-39046
2022-03-18 16:15:08
ibm
ibm
Security Bulletin: Information disclosure vulnerability affects IBM Business Automation Workflow and IBM Business Process Manager (BPM) - CVE-CVE-2021-39046
2022-03-17 18:24:44
Security Bulletin: Cross-Site Scripting and information disclosure vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for March 2022 (CVE-2021-29835, CVE-39046)
2022-04-01 17:39:42
nvd
nvd
CVE-2021-39046
2022-03-18 16:15:08

EPSS

0.001

Percentile

23.7%

JSON
Related for CNVD-2022-66267
prion1cvelist1cve1ibm2nvd1