IBM Business Process Manager (BPM) 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, 8.5.5 through 8.5.5.0, and 8.5.6 through 8.5.6.0, when external Enterprise Content Management (ECM) integration is enabled with a certain technical system account configuration, allows remote authenticated users to bypass intended document-access restrictions via a (1) upload or (2) download action.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2015-08-01T01:00:00
Updated: 2024-08-06T04:54:16.520Z
Reserved: 2015-02-19T00:00:00
Link: CVE-2015-1904
Vulnrichment
No data.
NVD
Status : Modified
Published: 2015-08-01T01:59:10.443
Modified: 2024-11-21T02:26:22.583
Link: CVE-2015-1904
Redhat
No data.