2 matches found
CVE-2022-43922
Summary: CVE-2022-43922 affects IBM App Connect Enterprise Certified Container versions 4.1–6.2, where a weak hash of the API key in configuration could disclose sensitive information. The root cause is a weak hashing approach used to generate the API key secret. Impact details are as described i...
Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands that run with designerFlowsOperationMode set to "all" may be vulnerable to loss of confidentiality due to CVE-2022-43922
Summary IBM App Connect Enterprise Certified Container DesignerAuthoring operands that run with designerFlowsOperationMode set to "all" would require an API Key to be defined for a cloud-hosted instance of IBM App Connect. If an OpenShift secret was not created manually for this API Key then the...