App Connect Enterprise Security Vulnerabilities and Issues — App Connect Enterprise CVE List

Lucene search

IbmApp Connect Enterprise

6 matches found

CVE•added 2024/03/26 3:15 p.m.•72 views

CVE-2024-22356

IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.9.0 and IBM Integration Bus for z/OS 10.1 through 10.1.0.2store potentially sensitive information in log or trace files that could be read by a privileged user. IBM X-Force ID: 280893.

4.9CVSS4.7AI score0.0005EPSS

CVE•added 2023/10/13 4:15 p.m.•55 views

CVE-2023-40682

IBM App Connect Enterprise 12.0.1.0 through 12.0.8.0 contains an unspecified vulnerability that could allow a local privileged user to obtain sensitive information from API logs. IBM X-Force ID: 263833.

4.4CVSS4.2AI score0.00019EPSS

CVE•added 2024/05/14 3:14 p.m.•54 views

CVE-2024-28760

IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 dashboard is vulnerable to a denial of service due to improper restrictions of resource allocation. IBM X-Force ID: 285244.

4.3CVSS6.3AI score0.00136EPSS

CVE•added 2024/05/22 7:15 p.m.•54 views

CVE-2024-31893

IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain sensitive calendar information using an expired access token. IBM X-Force ID: 288174.

4.3CVSS4.2AI score0.00079EPSS

CVE•added 2024/05/22 8:15 p.m.•51 views

CVE-2024-31894

IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain sensitive user information using an expired access token. IBM X-Force ID: 288175.

4.3CVSS4.2AI score0.00086EPSS

CVE•added 2025/01/18 3:15 p.m.•41 views

CVE-2024-49338

IBM App Connect Enterprise 12.0.1.0 through 12.0.7.0and 13.0.1.0 under certain configurations could allow a privileged user to obtain JMS credentials.

4.4CVSS4.5AI score0.00029EPSS