← back
CVE-2015-0110

CVE-2015-0110

EPSS 1.0%
IBM Business Process Manager (aka BPM) 7.5.x, 8.0.x, and 8.5.x and WebSphere Lombardi Edition (aka WLE) 7.2.x allow remote authenticated users to bypass intended access restrictions on internal service types via vectors involving the executeServiceByName URL.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www-304.ibm.com/support/docview.wss?uid=swg21694940http://www.securityfocus.com/bid/73274