3 matches found
Security Bulletin: IBM API Connect's Developer Portal is vulnerable to social engineering attacks (CVE-2020-4337)
Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-4337 DESCRIPTION: IBM API Connect could allow an attacker to launch phishing attacks by tricking the server to generate user registration emails that contain malicious URLs. CVSS Base score: 6...
CVE-2020-4337
IBM API Connect 2018.4.1.0 through 2018.4.1.12 could allow an attacker to launch phishing attacks by tricking the server to generate user registration emails that contain malicious URLs. IBM X-Force ID: 177933...
CVE-2020-4337
CVE-2020-4337 affects IBM API Connect 2018.4.1.0–2018.4.1.12, where an attacker could trigger the server to send user registration emails containing malicious URLs, enabling phishing. The IBM advisory (Vulnerability Details) confirms the affected product versions and impact, with a CVSS v3 base s...