VDB
CVE-2021-38965
CVE-2021-38965
PUBLISHED
In IBM Business Automation Workflow existieren mehrere Schwachstellen. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen, indem er eine speziell gestaltete Anfrage sendet.
EPSS 2.31% · 85.1th percentile
Risk Scores
EPSS Score
2.31%
85.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | IBM Maximo Asset Management 7.6.1 | |
| IBM | IBM Business Automation Workflow 20.0.0.1 | |
| IBM | IBM Business Automation Workflow 20.0.0.2 | |
| IBM | IBM Business Automation Workflow 21.0.2 | |
| IBM | IBM Business Automation Workflow 19.0.0.3 |
Exploit Intelligence
Timeline
- Jan 17, 2022 CVE Published
- Jan 18, 2022 EPSS Score
- Jan 22, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- May 4, 2022 EPSS Score
- Jun 27, 2022 EPSS Score
- Aug 20, 2022 EPSS Score
- Oct 12, 2022 EPSS Score
- Jan 26, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 20, 2023 EPSS Score
- May 13, 2023 EPSS Score