CVE-2019-4425

IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, and 18.0.0.2 could allow a user to obtain highly sensitive information from another user by inserting links that would be clicked on by unsuspecting users. IBM X-Force ID: 162771.

Published : 2019-08-20 19:15 Updated : 2019-10-09 23:50

3.5
CVSS Score More info
Score 3.5 / 10
3.5
Vendor Product Version URI
Ibm Business Automation Workflow 18.0.0.0 cpe:/a:ibm:business_automation_workflow:18.0.0.0
Ibm Business Automation Workflow 18.0.0.1 cpe:/a:ibm:business_automation_workflow:18.0.0.1
Ibm Business Automation Workflow 18.0.0.2 cpe:/a:ibm:business_automation_workflow:18.0.0.2
Ibm Business Automation Workflow 19.0.0.1 cpe:/a:ibm:business_automation_workflow:19.0.0.1
Ibm Business Process Manager 8.0.0.0 cpe:/a:ibm:business_process_manager:8.0.0.0
Ibm Business Process Manager 8.0.0.0 cpe:/a:ibm:business_process_manager:8.0.0.0::~~advanced~~~
Ibm Business Process Manager 8.0.0.0 cpe:/a:ibm:business_process_manager:8.0.0.0::~~express~~~
Ibm Business Process Manager 8.0.0.0 cpe:/a:ibm:business_process_manager:8.0.0.0::~~standard~~~
Ibm Business Process Manager 8.0.1.0 cpe:/a:ibm:business_process_manager:8.0.1.0
Ibm Business Process Manager 8.0.1.0 cpe:/a:ibm:business_process_manager:8.0.1.0::~~advanced~~~
Ibm Business Process Manager 8.0.1.0 cpe:/a:ibm:business_process_manager:8.0.1.0::~~express~~~
Ibm Business Process Manager 8.0.1.0 cpe:/a:ibm:business_process_manager:8.0.1.0::~~standard~~~
Ibm Business Process Manager 8.0.1.1 cpe:/a:ibm:business_process_manager:8.0.1.1
Ibm Business Process Manager 8.0.1.1 cpe:/a:ibm:business_process_manager:8.0.1.1::~~advanced~~~
Ibm Business Process Manager 8.0.1.1 cpe:/a:ibm:business_process_manager:8.0.1.1::~~express~~~
Ibm Business Process Manager 8.0.1.1 cpe:/a:ibm:business_process_manager:8.0.1.1::~~standard~~~
Ibm Business Process Manager 8.0.1.2 cpe:/a:ibm:business_process_manager:8.0.1.2
Ibm Business Process Manager 8.0.1.2 cpe:/a:ibm:business_process_manager:8.0.1.2::~~advanced~~~
Ibm Business Process Manager 8.0.1.2 cpe:/a:ibm:business_process_manager:8.0.1.2::~~express~~~
Ibm Business Process Manager 8.0.1.2 cpe:/a:ibm:business_process_manager:8.0.1.2::~~standard~~~
Ibm Business Process Manager 8.0.1.3 cpe:/a:ibm:business_process_manager:8.0.1.3::~~advanced~~~
Ibm Business Process Manager 8.0.1.3 cpe:/a:ibm:business_process_manager:8.0.1.3::~~express~~~
Ibm Business Process Manager 8.0.1.3 cpe:/a:ibm:business_process_manager:8.0.1.3::~~standard~~~
Ibm Business Process Manager 8.5.0.0 cpe:/a:ibm:business_process_manager:8.5.0.0
Ibm Business Process Manager 8.5.0.0 cpe:/a:ibm:business_process_manager:8.5.0.0::~~advanced~~~
Ibm Business Process Manager 8.5.0.0 cpe:/a:ibm:business_process_manager:8.5.0.0::~~express~~~
Ibm Business Process Manager 8.5.0.0 cpe:/a:ibm:business_process_manager:8.5.0.0::~~standard~~~
Ibm Business Process Manager 8.5.0.1 cpe:/a:ibm:business_process_manager:8.5.0.1
Ibm Business Process Manager 8.5.0.1 cpe:/a:ibm:business_process_manager:8.5.0.1::~~advanced~~~
Ibm Business Process Manager 8.5.0.1 cpe:/a:ibm:business_process_manager:8.5.0.1::~~express~~~
Ibm Business Process Manager 8.5.0.1 cpe:/a:ibm:business_process_manager:8.5.0.1::~~standard~~~
Ibm Business Process Manager 8.5.0.2 cpe:/a:ibm:business_process_manager:8.5.0.2
Ibm Business Process Manager 8.5.0.2 cpe:/a:ibm:business_process_manager:8.5.0.2::~~advanced~~~
Ibm Business Process Manager 8.5.0.2 cpe:/a:ibm:business_process_manager:8.5.0.2::~~express~~~
Ibm Business Process Manager 8.5.0.2 cpe:/a:ibm:business_process_manager:8.5.0.2::~~standard~~~
Ibm Business Process Manager 8.5.5.0 cpe:/a:ibm:business_process_manager:8.5.5.0
Ibm Business Process Manager 8.5.6.0 cpe:/a:ibm:business_process_manager:8.5.6.0:-
Ibm Business Process Manager 8.5.6.0 cpe:/a:ibm:business_process_manager:8.5.6.0:cf01
Ibm Business Process Manager 8.5.6.0 cpe:/a:ibm:business_process_manager:8.5.6.0:cf02
Ibm Business Process Manager 8.5.7.0 cpe:/a:ibm:business_process_manager:8.5.7.0:-
Ibm Business Process Manager 8.5.7.0 cpe:/a:ibm:business_process_manager:8.5.7.0:cf2016.06
Ibm Business Process Manager 8.5.7.0 cpe:/a:ibm:business_process_manager:8.5.7.0:cf2016.09
Ibm Business Process Manager 8.5.7.0 cpe:/a:ibm:business_process_manager:8.5.7.0:cf2016.12
Ibm Business Process Manager 8.5.7.0 cpe:/a:ibm:business_process_manager:8.5.7.0:cf2017.03
Ibm Business Process Manager 8.5.7.0 cpe:/a:ibm:business_process_manager:8.5.7.0:cf2017.06
Ibm Business Process Manager 8.6.0.0 cpe:/a:ibm:business_process_manager:8.6.0.0:-:~~-~~~
Ibm Business Process Manager 8.6.0.0 cpe:/a:ibm:business_process_manager:8.6.0.0:cf2017.12:~~-~~~
Ibm Business Process Manager 8.6.0.0 cpe:/a:ibm:business_process_manager:8.6.0.0:cf2018.03:~~-~~~
  1. Ibm (2) Search CVE
    1. Business Process Manager (12) Search CVE
      1. 8.0.0.0
      2. 8.0.1.0
      3. 8.0.1.1
      4. 8.0.1.2
      5. 8.0.1.3
      6. 8.5.0.0
      7. 8.5.0.1
      8. 8.5.0.2
      9. 8.5.5.0
      10. 8.5.6.0
      11. 8.5.7.0
      12. 8.6.0.0
    2. Business Automation Workflow (4) Search CVE
      1. 18.0.0.0
      2. 18.0.0.1
      3. 18.0.0.2
      4. 19.0.0.1

CWE

ID Name Description Links
CWE-200 Information Exposure An information exposure is the intentional or unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information. CVE

History of changes

Date Event
2019-08-23 18:35
2019-08-20 19:40

New CVE