CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-29753

IBM Business Automation Workflow 18. 19, 20, 21, and IBM Business Process Manager 8.5 and d8.6 transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.1%

CVSS Severity

CVSS v3 Score 5.9

CVSS v2 Score 4.3

References

Products affected by CVE-2021-29753

Ibm » Business Automation Workflow » Version: 18.0.0.0

cpe:2.3:a:ibm:business_automation_workflow:18.0.0.0
Ibm » Business Automation Workflow » Version: 19.0.0.0

cpe:2.3:a:ibm:business_automation_workflow:19.0.0.0
Ibm » Business Automation Workflow » Version: 20.0.0.0

cpe:2.3:a:ibm:business_automation_workflow:20.0.0.0
Ibm » Business Automation Workflow » Version: 21.0.0.0

cpe:2.3:a:ibm:business_automation_workflow:21.0.0.0
Ibm » Business Process Manager » Version: 8.5.0.0

cpe:2.3:a:ibm:business_process_manager:8.5.0.0
Ibm » Business Process Manager » Version: 8.6.0.0

cpe:2.3:a:ibm:business_process_manager:8.6.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-29753

Products

Pricing

Contact Us