Vulnerabilities > IBM > Workflow Process Service > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-12-21 | CVE-2021-38893 | Cross-site Scripting vulnerability in IBM products IBM Business Process Manager 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, 20.0 and 21.0 are vulnerable to stored cross-site scripting. | 5.4 |
2021-12-21 | CVE-2021-38900 | Unspecified vulnerability in IBM products IBM Business Process Manager 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, 20.0 and 21.0 could allow a privileged user to obtain highly sensitive information due to improper access controls. | 6.5 |
2021-12-21 | CVE-2021-38966 | Cross-site Scripting vulnerability in IBM Cloud PAK for Automation and Workflow Process Service IBM Cloud Pak for Automation 21.0.2 is vulnerable to cross-site scripting. | 5.4 |