Incorrect Authorization Checks in IBM Business Process Manager

Incorrect Authorization Checks in IBM Business Process Manager

CVE-2015-7463 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:P

IBM Business Process Manager 7.5.x, 8.0.x, 8.5.0, 8.5.5, and 8.5.6.0 through cumulative fix 2 allow remote authenticated users to delete process and task data by leveraging incorrect authorization checks. IBM X-Force ID: 108393.

Learn more about our User Device Pen Test.