CNNVD-202601-1622 Information
CNNVD ID
CNNVD-202601-1622
Related CVE
- CNNVD Published: 2026-01-09
Description (Chinese)
TIM BPM Suite和TIM FLOW都是德国TIM公司的一款业务流程管理软件。 TIM BPM Suite和TIM FLOW 9.1.2及之前版本存在安全漏洞,该漏洞源于授权绕过,可能导致权限提升和信息泄露。
Description (English)
TIM BPM Suite and TIM FLOW are both a business process management software package of the German company TIM. There is a security gap in TIM BPM Suite and TIM FLOW 9.1.2 and earlier versions, which stems from the circumvention of the authorization, which may lead to increased authority and information disclosure.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
TIM
Published
2026-01-09
Last Modified
2026-02-24
References
https://tim-doc.atlassian.net/wiki/spaces/eng/pages/230981636/Release+Notes https://www.y-security.de/news-en/tim-bpm-suite-tim-flow-multiple-vulnerabilities/ https://access.redhat.com/security/cve/cve-2025-67282
Patch
https://tim-doc.atlassian.net/wiki/spaces/eng/pages/230981636/Release+Notes
Share on: