Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm api connect vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2020-4899
IBM API Connect 5.0.0.0 up to and including 5.0.8.10 could potentially leak sensitive information or allow for data corruption due to plain text transmission of sensitive information across the network. IBM X-Force ID: 190990.
Ibm Api Connect
6.4
CVSSv2
CVE-2017-1322
IBM API Connect 5.0.6.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume memory resources. IBM X-Force ID: 125918.
Ibm Api Connect 5.0.6.2
Ibm Api Connect 5.0.1.0
Ibm Api Connect 5.0.0.0
Ibm Api Connect 5.0.6.0
Ibm Api Connect 5.0.5.0
Ibm Api Connect 5.0.4.0
Ibm Api Connect 5.0.3.0
Ibm Api Connect 5.0.2.0
Ibm Api Connect 5.0.7.0
Ibm Api Connect 5.0.6.1
Ibm Api Connect 5.0.0.1
5.8
CVSSv2
CVE-2017-1551
IBM API Connect 5.0.0.0 up to and including 5.0.7.2 could allow a remote malicious user to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions ...
Ibm Api Connect 5.0.0.0
Ibm Api Connect 5.0.0.1
Ibm Api Connect 5.0.7.2
Ibm Api Connect 5.0.5.0
Ibm Api Connect 5.0.6.0
Ibm Api Connect 5.0.6.1
Ibm Api Connect 5.0.6.2
Ibm Api Connect 5.0.1.0
Ibm Api Connect 5.0.3.0
Ibm Api Connect 5.0.6.4
Ibm Api Connect 5.0.7.1
Ibm Api Connect 5.0.2.0
Ibm Api Connect 5.0.4.0
Ibm Api Connect 5.0.6.3
Ibm Api Connect 5.0.7.0
5.5
CVSSv2
CVE-2020-4706
IBM API Connect 5.0.0.0 up to and including 5.0.8.10 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. By sending a specially crafted HTTP request, a remote attacker could exploit this vulnerability to inject HTTP HOST header, whi...
Ibm Api Connect
5
CVSSv2
CVE-2020-4695
IBM API Connect V10 is impacted by insecure communications during database replication. As the data replication happens over insecure communication channels, an attacker can view unencrypted data leading to a loss of confidentiality.
Ibm Api Connect
5
CVSSv2
CVE-2020-4452
IBM API Connect V2018.4.1.0 up to and including 2018.4.1.11 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 181324.
Ibm Api Connect
5
CVSSv2
CVE-2020-4346
IBM API Connect's V2018.4.1.0 up to and including 2018.4.1.10 management server has an unsecured api which can be exploited by an unauthenticated malicious user to obtain sensitive information. IBM X-Force ID: 178322.
Ibm Api Connect
5
CVSSv2
CVE-2019-4553
IBM API Connect V5.0.0.0 up to and including 5.0.8.7iFix3 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 165958.
Ibm Api Connect
5
CVSSv2
CVE-2019-4609
IBM API Connect 2018.4.1.7 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 168510.
Ibm Api Connect 2018.4.1.7
5
CVSSv2
CVE-2019-4600
IBM API Connect version V5.0.0.0 up to and including 5.0.8.7 could reveal sensitive information to an attacker using a specially crafted HTTP request. IBM X-Force ID: 167883.
Ibm Api Connect
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »