IBM OpenPages Information Disclosure Vulnerability in Workflow REST Endpoints

Vulnerability

A vulnerability in IBM OpenPages 9.0 allows authenticated users to access sensitive information related to workflow configuration and internal state. This issue arises from inadequate security measures on certain REST endpoints associated with OpenPages' workflow feature, enabling unauthorized information disclosure.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive workflow-related information and internal configurations.

Added: Jul 9, 2025, 3:20 PM

Updated: Jul 9, 2025, 3:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM OpenPages Information Disclosure Vulnerability in Workflow REST Endpoints

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating