3 matches found
Security Bulletin: API Connect V2018 is impacted by a information disclosure vulnerability (CVE-2019-4437)
Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2019-4437 DESCRIPTION: IBM API Connect Developer Portal may inadvertently leak sensitive details about internal servers and network via API swagger. CVSS Base Score: 8.2 CVSS Temporal Score: See fo...
CVE-2019-4437
IBM API Connect 2018.1 through 2018.4.1.6 may inadvertently leak sensitive details about internal servers and network via API swagger. IBM X-force ID: 162947...
CVE-2019-4437
IBM API Connect 2018.1–2018.4.1.6 contains an information-disclosure vulnerability where sensitive details about internal servers and networks can be exposed via the API Swagger portal. The root cause is addressed in fixpack 2018.4.1.7 for the API Connect 2018.x line (management server fix). Affe...