Lucene search
K

7 matches found

CVE
CVE
added 8 hours ago6 views

CVE-2026-9074

IBM API Connect is affected by an unauthenticated SQL injection in the password reset flow for versions 10.0.8.0–10.0.8.9 and 12.1.0.0–12.1.0.3. The issue is a server-side SQL injection vulnerability that can be exploited without authentication, with network access required and no user interactio...

9.1CVSS6AI score
Exploits0References2
The Hacker News
The Hacker News
added 2025/12/31 1:37 p.m.8 views

Critical CVSS 9.8 Flaw Found in IBM API Connect Authentication System

IBM has disclosed details of a critical security flaw in API Connect that could allow attackers to gain remote access to the application. The vulnerability, tracked as CVE-2025-13915 , is rated 9.8 out of a maximum of 10.0 on the CVSS scoring system. It has been described as an authentication...

9.8CVSS6.7AI score0.08673EPSS
Exploits0
OSV
OSV
added 2025/12/26 2:15 p.m.6 views

CVE-2025-13915

IBM API Connect 10.0.8.0 through 10.0.8.5, and 10.0.11.0 could allow a remote attacker to bypass authentication mechanisms and gain unauthorized access to the application...

9.8CVSS5.8AI score0.08673EPSS
Exploits0References1
NVD
NVD
added 2025/12/26 2:15 p.m.5 views

CVE-2025-13915

IBM API Connect 10.0.8.0 through 10.0.8.5, and 10.0.11.0 could allow a remote attacker to bypass authentication mechanisms and gain unauthorized access to the application...

9.8CVSS0.08673EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/26 1:16 p.m.3 views

CVE-2025-13915 Authentication bypass in IBM API Connect

IBM API Connect 10.0.8.0 through 10.0.8.5, and 10.0.11.0 could allow a remote attacker to bypass authentication mechanisms and gain unauthorized access to the application...

9.8CVSS6.6AI score0.08673EPSS
Exploits0References1
CVE
CVE
added 2025/12/26 1:16 p.m.25 views

CVE-2025-13915

IBM API Connect is affected by CVE-2025-13915, a remote authentication bypass in versions 10.0.8.0–10.0.8.5 and 10.0.11.0. The issue allows an unauthenticated attacker to bypass authentication and gain unauthorized access to the application. IBM’s security bulletin recommends upgrading to version...

9.8CVSS6.6AI score0.08673EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/27 7:37 p.m.43 views

Security Bulletin: A Security Vulnerability was discovered in the IBM Security Verify Access Appliance. (CVE-2023-1206)

Summary The Linux Kernel as shipped on the IBM Security Verify Access Appliance has a denial of service vulnerability in the IPv6 connection lookup table. This has been fixed in the IBM Security Verify Access Appliance 10.0.8.0 IF1. Vulnerability Details CVEID:CVE-2023-1206 DESCRIPTION: Linux...

5.7CVSS6.9AI score0.00553EPSS
Exploits0Affected Software1
Rows per page
Query Builder