IBM Business Process Manager 8.0.1.1/8.5.7 Web UI cross site scripting

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in IBM Business Process Manager 8.0.1.1/8.5.7 (Business Process Management Software) and classified as problematic. This issue affects an unknown part of the component Web UI. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1082008001/14/2021VulD...person_nameNalla Muthu S/Prasath Ksecurityfocus.com01/14/2021accepted70
1082007901/14/2021VulD...cvss2_nvd_basescore3.5nist.gov01/14/2021accepted90
1082007801/14/2021VulD...xforce127478cve.mitre.org01/14/2021accepted70
714121811/19/2019VulD...securityfocus_classInput Validation Errorsecurityfocus.com11/19/2019accepted100
714121711/19/2019VulD...securityfocus_date1506038400 (09/22/2017)securityfocus.com11/19/2019accepted100
714120911/19/2019VulD...confirm_urlhttp://www.ibm.com/support/docview.wss?uid=swg22006265ibm.com11/19/2019accepted100
714117011/19/2019VulD...discoverydate150603840011/19/2019accepted100
714123009/27/2017VulD...cvss3_nvd_basescore5.4nist.gov09/27/2017accepted90
714122909/27/2017VulD...0day_days409/27/2017accepted90
714122809/27/2017VulD...cvss3_vuldb_rcX09/27/2017accepted90
714122709/27/2017VulD...cvss3_vuldb_rlX09/27/2017accepted90
714122609/27/2017VulD...cvss3_vuldb_eX09/27/2017accepted90
714122509/27/2017VulD...cvss2_vuldb_rcND09/27/2017accepted90
714122409/27/2017VulD...cvss2_vuldb_rlND09/27/2017accepted90
714122309/27/2017VulD...cvss2_vuldb_eND09/27/2017accepted90
714122209/27/2017VulD...locationWebsite09/27/2017accepted90
714122109/27/2017VulD...qualys_titleIBM Business Process Manager Cross-site Scripting vulnerability (swg22006265)qualys.com09/27/2017accepted100
714122009/27/2017VulD...qualys_id370608qualys.com09/27/2017accepted100
714121909/27/2017VulD...securityfocus_titleIBM Business Process Manager CVE-2017-1425 Cross Site Scripting Vulnerabilitysecurityfocus.com09/27/2017accepted100
714121609/27/2017VulD...securityfocus100961securityfocus.com09/27/2017accepted100

Do you know our Splunk app?

Download it now for free!