Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2024-28761 IBM App Connect Enterprise HTML injection

🗓️ 11 May 2024 12:57:59Reported by ibmType 
cvelist
 cvelist🔗 www.cve.org👁 17 Views

IBM ACE HTML injection vulnerability in versions 11 and 12

Related
Affected
Refs
ReporterTitlePublishedViews
Family
BDU FSTEC		The vulnerability of the Dashboard component of the software control panel allows for the insertion of arbitrary HTML code by attackers, enabling them to implement applications through IBM App Connect Enterprise.
1 Aug 202400:00
bdu_fstec
Circl		CVE-2024-28761
13 Mar 202517:44
circl
CNNVD		IBM App Connect Enterprise 安全漏洞
14 May 202400:00
cnnvd
CNVD		IBM App Connect Enterprise HTML Injection Vulnerability
13 May 202400:00
cnvd
CVE		CVE-2024-28761
11 May 202412:57
cve
IBM Security Bulletins		Security Bulletin: IBM App Connect Enterprise is vulnerable to an HTML injection attack (CVE-2024-28761)
10 May 202416:00
ibm
EUVD		EUVD-2024-25847
3 Oct 202520:07
euvd
NVD		CVE-2024-28761
14 May 202415:14
nvd
OSV		CVE-2024-28761
14 May 202415:14
osv
Positive Technologies		PT-2024-5320 · Ibm · Ibm App Connect Enterprise
10 May 202400:00
ptsecurity
Rows per page
[
  {
    "defaultStatus": "unaffected",
    "product": "App Connect Enterprise",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "11.0.0.25",
        "status": "affected",
        "version": "11.0.0.1",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "12.0.12.0",
        "status": "affected",
        "version": "12.0.1.0",
        "versionType": "semver"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
11 May 2024 12:57Current
5.8Medium risk
Vulners AI Score5.8
CVSS 3.15.4
EPSS0.0033
cve-2024-28761ibm app connect enterprisehtml injectionremote attackerweb browser security
17