VYPR
Medium severity6.3NVD Advisory· Published Sep 20, 2018· Updated Jun 17, 2026

CVE-2018-1674

CVE-2018-1674

Description

IBM Business Process Manager 8.5 through 8.6 and 18.0.0.0 through 18.0.0.1 are vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 145109.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • IBM/Business Process Managerllm-fuzzy2 versions
    8.5 through 8.6 and 18.0.0.0 through 18.0.0.1+ 1 more
    • (no CPE)range: 8.5 through 8.6 and 18.0.0.0 through 18.0.0.1
    • (no CPE)range: 8.5

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.