KLA10488
Code injection vulnerabilities in IBM BPM
Обновлено: 17/06/2019
Дата обнаружения
23/03/2015
Уровень угрозы
Warning
Описание

An unspecified vulnerabilities were found in IBM BPM. By exploiting these vulnerabilities malicious users inject arbitrary web script. This vulnerability can be exploited remotely via a specially designed URL or vectors related to data fields.

Пораженные продукты

IBM Business Process Manager 7.5 versions earlier than 7.5.1.2
IBM Business Process Manager 8.0 versions earlier than 8.0.1.3
IBM Business Process Manager 8.5 versions earlier than 8.5.0.1
IBM Business Process Manager 8.5.5 versions earlier than 8.5.5.0

Решение

Update to latest version!

Оказываемое влияние
?
CI 
[?]
Связанные продукты
IBM Business Process Manager
CVE-IDS
CVE-2015-01054.3Warning
CVE-2015-01064.3Warning
CVE-2015-01584.3Warning
CVE-2015-01033.5Warning