CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-4532

IBM Business Automation Workflow and IBM Business Process Manager (IBM Business Process Manager Express 8.5.5, 8.5.6, 8.5.7, and 8.6) could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 182716.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.8%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

Products affected by CVE-2020-4532

Ibm » Business Automation Workflow » Version: 18.0.0.1

cpe:2.3:a:ibm:business_automation_workflow:18.0.0.1
Ibm » Business Automation Workflow » Version: 19.0.0.3

cpe:2.3:a:ibm:business_automation_workflow:19.0.0.3
Ibm » Business Process Manager » Version: 8.5.5.0

cpe:2.3:a:ibm:business_process_manager:8.5.5.0
Ibm » Business Process Manager » Version: 8.5.6.0

cpe:2.3:a:ibm:business_process_manager:8.5.6.0
Ibm » Business Process Manager » Version: 8.5.6.1

cpe:2.3:a:ibm:business_process_manager:8.5.6.1
Ibm » Business Process Manager » Version: 8.5.6.2

cpe:2.3:a:ibm:business_process_manager:8.5.6.2
Ibm » Business Process Manager » Version: 8.6.0.0

cpe:2.3:a:ibm:business_process_manager:8.6.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-4532

Products

Pricing

Contact Us