Vulnerabilities > IBM > Workflow Process Service

DATE CVE VULNERABILITY TITLE RISK
2021-12-21 CVE-2021-38893 Cross-site Scripting vulnerability in IBM products
IBM Business Process Manager 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, 20.0 and 21.0 are vulnerable to stored cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2021-12-21 CVE-2021-38900 Unspecified vulnerability in IBM products
IBM Business Process Manager 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, 20.0 and 21.0 could allow a privileged user to obtain highly sensitive information due to improper access controls.
network
low complexity
ibm
6.5
6.5
2021-12-21 CVE-2021-38966 Cross-site Scripting vulnerability in IBM Cloud PAK for Automation and Workflow Process Service
IBM Cloud Pak for Automation 21.0.2 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4