Redhat Process Automation Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Process Automation Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2022-2457 — CVSS 9.8 (critical): A flaw was found in Red Hat Process Automation Manager 7 where an attacker can benefit from a brute force attack against Administration…
CVE-2022-2458 — CVSS 8.2 (high): XML external entity injection(XXE) is a vulnerability that allows an attacker to interfere with an application's processing of XML data…
CVE-2023-4853 — CVSS 8.1 (high): A flaw was found in Quarkus where HTTP security policies are not sanitizing certain character permutations correctly when accepting…
CVE-2019-14886 — CVSS 6.5 (medium): A vulnerability was found in business-central, as shipped in rhdm-7.5.1 and rhpam-7.5.1, where encoded passwords are stored in…
CVE-2025-58713 — CVSS 6.4 (medium): A container privilege escalation flaw was found in certain Red Hat Process Automation Manager images. This issue stems from the /etc/passwd…