CVE-2021-20482 is a vulnerability in IBM Cloud Pak For Automation
Published on March 30, 2021

IBM Cloud Pak for Automation 20.0.2 and 20.0.3 IF002 are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 197504.

NVD

Products Associated with CVE-2021-20482

Want to know whenever a new CVE is published for IBM Cloud Pak For Automation? stack.watch will email you.

IBM Cloud Pak For Automation

Affected Versions

IBM Cloud Pak for Automation:

Version 20.0.2 is affected.
Version 20.0.3.IF002 is affected.

Exploit Probability

EPSS

0.38%

Percentile

58.97%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-20482 is a vulnerability in IBM Cloud Pak For AutomationPublished on March 30, 2021

Products Associated with CVE-2021-20482

Affected Versions

Exploit Probability

CVE-2021-20482 is a vulnerability in IBM Cloud Pak For Automation
Published on March 30, 2021