CVE-2020-4531

IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Business Process Manager 8.0, 8.5, and 8.6 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 182715.
References
Configurations

Configuration 1

cpe:2.3:a:ibm:business_process_manager:8.5.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:business_process_manager:8.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:18.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:business_process_manager:8.6.0.0:-:*:*:-:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:19.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:20.0.0.0:*:*:*:*:*:*:*

Information

Published : 2020-09-25 05:15

Updated : 2020-09-29 07:33


NVD link : CVE-2020-4531

Mitre link : CVE-2020-4531

Products Affected
No products.
CWE
CWE-252

Unchecked Return Value