IBM API Connect (APIConnect) is an integration solution for managing the lifecycle of APIs from IBM. The product supports creating, running, managing and securing APIs and microservices, etc. An injection vulnerability exists in IBM API Connect HOST, which stems from the productβs host header not validating input information. An attacker could use the vulnerability to cause targeted cross-site scripting attacks, cache poisoning, session hijacking, etc. by sending specially crafted HTTP requests.