CVE-2020-4532 vulnerability in IBM Products
Published on June 17, 2020
IBM Business Automation Workflow and IBM Business Process Manager (IBM Business Process Manager Express 8.5.5, 8.5.6, 8.5.7, and 8.6) could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 182716.
Products Associated with CVE-2020-4532
stack.watch emails you whenever new vulnerabilities are published in IBM Business Automation Workflow or IBM Business Process Manager. Just hit a watch button to start following.
Affected Versions
IBM Business Process Manager Express:- Version 8.6 is affected.
- Version 8.5.7.CF201706 is affected.
- Version 8.5.7.CF201703 is affected.
- Version 8.5.7.CF201612 is affected.
- Version 8.5.7.CF201609 is affected.
- Version 8.5.7.CF201606 is affected.
- Version 8.5.7 is affected.
- Version 8.5.6.2 is affected.
- Version 8.5.6.1 is affected.
- Version 8.5.6 is affected.
- Version 8.5.5 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.