Api Connect@5.0.8.3 Security Vulnerabilities and Issues — Api Connect@5.0.8.3 CVE List

Lucene search

IbmApi Connect5.0.8.3

3 matches found

CVE•added 2018/08/22 11:29 a.m.•42 views

CVE-2018-1599

IBM API Connect 5.0.0.0 through 5.0.8.3 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks agains...

5.4CVSS5.4AI score0.00092EPSS

CVE•added 2018/07/06 2:29 p.m.•40 views

CVE-2018-1546

IBM API Connect 5.0.0.0 through 5.0.8.3 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Forc...

5.9CVSS5.4AI score0.00229EPSS

CVE•added 2018/08/16 7:29 p.m.•40 views

CVE-2018-1712

IBM API Connect's Developer Portal 5.0.0.0 through 5.0.8.3 is vulnerable to Server Side Request Forgery. An attacker, using specially crafted input parameters can trick the server into making potentially malicious calls within the trusted network. IBM X-Force ID: 146370.

9.9CVSS8.9AI score0.00108EPSS