cvedb.io
CVE-2021-39046
MEDIUM · CVSS 4.9
EPSS exploitation probability: 0%
Published 2022-03-18T16:15:08.403 · Last modified 2026-06-17T04:03:01.197

Summary

IBM Business Automation Workflow 18.0, 19.0, 20.0, and 21.0 and IBM Business Process Manager 8.5 and 8.6 stores user credentials in plain clear text which can be read by a lprivileged user. IBM X-Force ID: 214346.

Affected products

ibm — business_automation_workflow

Does this affect you?

Add your gear to cvedb and we'll alert you only when ibm ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.