IBM Business Process Manager 8.5.7 Web UI cross site scripting

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in IBM Business Process Manager 8.5.7 (Business Process Management Software) and classified as problematic. Affected by this issue is an unknown function of the component Web UI. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1082000201/14/2021VulD...person_nameIBMsecurityfocus.com01/14/2021accepted70
1082000101/14/2021VulD...cvss2_nvd_basescore3.5nist.gov01/14/2021accepted90
1082000001/14/2021VulD...xforce127477cve.mitre.org01/14/2021accepted70
713821411/19/2019VulD...securityfocus_classInput Validation Errorsecurityfocus.com11/19/2019accepted100
713821311/19/2019VulD...securityfocus_date1506038400 (09/22/2017)securityfocus.com11/19/2019accepted100
713820511/19/2019VulD...confirm_urlhttp://www.ibm.com/support/docview.wss?uid=swg22005112ibm.com11/19/2019accepted100
713816611/19/2019VulD...discoverydate150603840011/19/2019accepted100
713822709/26/2017VulD...cvss3_nvd_basescore5.4nist.gov09/26/2017accepted90
713822609/26/2017VulD...0day_days309/26/2017accepted90
713822509/26/2017VulD...cvss3_vuldb_rcX09/26/2017accepted90
713822409/26/2017VulD...cvss3_vuldb_rlX09/26/2017accepted90
713822309/26/2017VulD...cvss3_vuldb_eX09/26/2017accepted90
713822209/26/2017VulD...cvss2_vuldb_rcND09/26/2017accepted90
713822109/26/2017VulD...cvss2_vuldb_rlND09/26/2017accepted90
713822009/26/2017VulD...cvss2_vuldb_eND09/26/2017accepted90
713821909/26/2017VulD...locationWebsite09/26/2017accepted90
713821809/26/2017VulD...seealso10711109/26/2017accepted100
713821709/26/2017VulD...qualys_titleIBM Business Process Manager Cross-Site Scripting Vulnerability (swg22005112)qualys.com09/26/2017accepted100
713821609/26/2017VulD...qualys_id370682qualys.com09/26/2017accepted100
713821509/26/2017VulD...securityfocus_titleIBM Business Process Manager CVE-2017-1424 HTML Injection Vulnerabilitysecurityfocus.com09/26/2017accepted100

Might our Artificial Intelligence support you?

Check our Alexa App!