IBM Security Bulletin: Information disclosure in IBM Business Process Manager (BPM) V8.5 document attachments search (CVE-2014-4759)
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
IBM BPM document attachment queries can return document properties that contain sensitive information. CVE(s): CVE-2014-4759 Affected product(s) and affected version(s): IBM Business Process Manager Standard V8.5.x IBM Business Process Manager Express V8.5.x IBM Business Process Manager Advanced V8.5.x Note. The query feature is only available for customers with the IBM BPM document store feature configured. This feature is configured, by default, unless one of the following
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_information_disclosure_in_ibm_business_process_manager_bpm_v8_5_document_attachments_search_cve_2014_4759?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2014-4759 ,CVE-2014-3095 ,CVE-2014-3075 ,CVE-2014-4244 ,CVE-2014-3093 and CVE-2014-5256. |