Api Connect Security Vulnerabilities and Issues — Api Connect CVE List

Lucene search

IbmApi Connect

3 matches found

CVE•added 2019/08/20 7:15 p.m.•43 views

CVE-2019-4402

IBM API Connect 2018.1 through 2018.4.1.6 developer portal could allow an unauthorized user to cause a denial of service via an unprotected API. IBM X-Force ID: 162263.

8.6CVSS7.2AI score0.00392EPSS

CVE•added 2019/08/20 8:15 p.m.•41 views

CVE-2019-4437

IBM API Connect 2018.1 through 2018.4.1.6 may inadvertently leak sensitive details about internal servers and network via API swagger. IBM X-force ID: 162947.

8.2CVSS5.1AI score0.00209EPSS

CVE•added 2019/08/20 7:15 p.m.•33 views

CVE-2019-4460

IBM API Connect 5.0.0.0 through 5.0.8.6 developer portal could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 163681.

7.5CVSS7.2AI score0.00375EPSS