2 matches found
Security Bulletin: IBM API Connect's API Manager is vulnerable to privilege escalation(CVE-2020-4638)
Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-4638 DESCRIPTION: IBM API Connect's API Manager is vulnerable to privilege escalation. An invitee to an API Provider organization can escalate privileges by manipulating the invitation link...
CVE-2020-4638
CVE-2020-4638 affects IBM API Connect’s API Manager (versions 2018.4.1.0–2018.4.1.12). A privilege-escalation flaw allows an invitee to an API Provider organization to gain higher privileges by manipulating the invitation link. The IBM bulletin notes remediation: address in IBM API Connect V2018....