Primary

Context

IBM Process Mining Open Redirect Vulnerability Allowing Phishing Attacks

Vulnerability

An open redirect vulnerability has been identified in IBM Process Mining versions 2.0.1 IF001 and 2.0.1. This vulnerability could allow remote attackers to conduct phishing attacks by spoofing URLs and redirecting users to malicious websites that appear trusted. Such an attack could enable the attacker to obtain sensitive information or carry out further attacks against the victim.

Impact

Exploitation of this vulnerability could lead to successful phishing attacks, allowing attackers to obtain sensitive information or conduct additional attacks against the victim.

Remediation

Users are advised to upgrade to IBM Process Mining version 2.0.2.

Added: Jun 21, 2025, 1:50 PM

Updated: Jun 21, 2025, 1:50 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

6.4

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

6.4

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Process Mining Open Redirect Vulnerability Allowing Phishing Attacks

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating