IBM API Connect’s API Manager 2018.4.1.0 through 2018.4.1.12 is vulnerable to privilege escalation. An invitee to an API Provider organization can escalate privileges by manipulating the invitation link. IBM X-Force ID: 185508.
CPE | Name | Operator | Version |
---|---|---|---|
api_connect | ge | 2018.4.1.0 | |
api_connect | le | 2018.4.1.12 |