Known Vulnerabilities for Business Process Management by Digiwin
Listed below are 3 of the newest known vulnerabilities associated with "Business Process Management" by "Digiwin".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-32458 json | Digiwin BPM has a XML External Entity Injection (XXE) vulnerability due to insufficient validation for user input. An unauthe... | 7.5 - HIGH | 2022-07-20 | 2022-09-14 |
| CVE-2022-32457 json | Digiwin BPM has inadequate filtering for URL parameter. An unauthenticated remote attacker can perform Blind SSRF attack to d... | 5.3 - MEDIUM | 2022-07-20 | 2022-09-14 |
| CVE-2022-32456 json | Digiwin BPM’s function has insufficient validation for user input. An unauthenticated remote attacker can inject arbitrary ... | 9.8 - CRITICAL | 2022-07-20 | 2022-09-14 |