CVE-2021-29751
CVE-2021-29751
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 3.1EPSS 0.9%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
28 Jun 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Business Process Manager 8.5 and 8.6 could allow an authenticated user to obtain sensitive information about another user under nondefault configurations. IBM X-Force ID: 201779.
CVSS:3.0/C:L/UI:N/S:U/AV:N/PR:L/I:N/AC:H/A:N/E:U/RL:O/RC:C