3 matches found
CVE-2020-4640
Certain IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 configurations can result in sensitive information in the URL fragment identifiers. This information can be cached in the intermediate nodes like proxy servers, cdn, logging platforms, etc. An attacker can make u...
CVE-2020-4640
IBM API Connect is affected by CVE-2020-4640 for configurations of IBM API Connect 10.0.0.0–10.0.1.0 and 2018.4.1.0–2018.4.1.13, which can leak sensitive data in URL fragment identifiers cached by intermediaries. The IBM security bulletin lists affected versions and that remediation is available:...
Security Bulletin: IBM API Connect is vulnerable to sensitive information leak (CVE-2020-4640)
Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-4640 DESCRIPTION: Certain IBM API Connect configurations can result in sensitive information in the URL fragment identifiers. This information can be cached in the intermediate nodes like prox...