CVE-2020-4446
published 2020-05-06CVE-2020-4446: IBM Business Process Manager 8.0, 8.5, and 8.6 and IBM Business Automation Workflow 18.0 and 19.0 could allow a remote attacker to bypass security…
medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
IBM Business Process Manager 8.0, 8.5, and 8.6 and IBM Business Automation Workflow 18.0 and 19.0 could allow a remote attacker to bypass security restrictions, caused by the failure to perform insufficient authorization checks. IBM X-Force ID: 181126.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | business_automation_workflow | — | — |
| ibm | business_automation_workflow | — | — |
| ibm | business_automation_workflow | 18.0.0.0 – 18.0.0.2 | — |
| ibm | business_automation_workflow | 19.0.0.1 – 19.0.0.3 | — |
| ibm | business_process_manager | — | — |
| ibm | business_process_manager | 8.0.0.0 – 8.0.1.3 | — |
| ibm | business_process_manager | 8.5.0.0 – 8.5.7.0 | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |
| ibm | business_process_manager_standard | — | — |