IBM Business Process Manager CVE-2017-1527 XML External Entity Injection Vulnerability

Bugtraq ID: 100959
Class: Input Validation Error
CVE: CVE-2017-1527
Remote: Yes
Local: No
Published: Sep 22 2017 12:00AM
Updated: Sep 22 2017 12:00AM
Credit: Sergio Ortega Fernndez (PwC Espaa - BSS).
Vulnerable: IBM Business Process Manager 8.5 1
IBM Business Process Manager 8.0.1 2
IBM Business Process Manager 7.5.1 2
IBM Business Process Manager 7.5 .0
IBM Business Process Manager 8.5.7.0 CF 2017.06
IBM Business Process Manager 8.5.7.0 CF 2016.12
IBM Business Process Manager 8.5.7.0
IBM Business Process Manager 8.5.6.0 CF 2
IBM Business Process Manager 8.5.6.0 CF 1
IBM Business Process Manager 8.5.6.0
IBM Business Process Manager 8.5.5.0
IBM Business Process Manager 8.5.0.2
IBM Business Process Manager 8.5.0.0
IBM Business Process Manager 8.0.1.3
IBM Business Process Manager 8.0.1.1
IBM Business Process Manager 8.0.1.0
IBM Business Process Manager 8.0.0.0
IBM Business Process Manager 7.5.1.1
IBM Business Process Manager 7.5.1.0
IBM Business Process Manager 7.5.0.1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus