Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm api connect vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-4008
API Connect V2018.1 up to and including 2018.4.1.1 is impacted by access token leak. Authorization tokens in some URLs can result in the tokens being written to log files. IBM X-Force ID: 155626.
Ibm Api Connect
5
CVSSv2
CVE-2018-1779
IBM API Connect 2018.1 up to and including 2018.3.7 could allow an unauthenticated malicious user to cause a denial of service due to not setting limits on JSON payload size. IBM X-Force ID: 148802.
Ibm Api Connect
5
CVSSv2
CVE-2016-1000232
NodeJS Tough-Cookie version 2.2.2 contains a Regular Expression Parsing vulnerability in HTTP request Cookie Header parsing that can result in Denial of Service. This attack appear to be exploitable via Custom HTTP header passed by client. This vulnerability appears to have been ...
Salesforce Tough-cookie
Ibm Api Connect
Ibm Api Connect 5.0.8.0
Redhat Openshift Container Platform 3.3
Redhat Openshift Container Platform 3.1
Redhat Openshift Container Platform 3.2
5
CVSSv2
CVE-2017-1328
IBM API Connect 5.0.0.0 - 5.0.6.0 could allow a remote malicious user to bypass security restrictions of the api, caused by improper handling of security policy. By crafting a suitable request, an attacker could exploit this vulnerability to bypass security and use the vulnerable...
Ibm Api Connect 5.0.3.0
Ibm Api Connect 5.0.2.0
Ibm Api Connect 5.0.1.0
Ibm Api Connect 5.0.0.1
Ibm Api Connect 5.0.6.0
Ibm Api Connect 5.0.4.0
Ibm Api Connect 5.0.0.0
Ibm Api Connect 5.0.6.2
Ibm Api Connect 5.0.6.1
Ibm Api Connect 5.0.5.0
5
CVSSv2
CVE-2017-1379
IBM API Connect 5.0.0.0 could allow a remote malicious user to obtain sensitive information, caused by improper handling of requests to the Developer Portal. IBM X-Force ID: 127002.
Ibm Api Connect 5.0.3.0
Ibm Api Connect 5.0.5.0
Ibm Api Connect 5.0.7.1
Ibm Api Connect 5.0.0.1
Ibm Api Connect 5.0.1.0
Ibm Api Connect 5.0.6.0
Ibm Api Connect 5.0.6.1
Ibm Api Connect 5.0.6.2
Ibm Api Connect 5.0.7.0
Ibm Api Connect 5.0.2.0
Ibm Api Connect 5.0.4.0
Ibm Api Connect 5.0.0.0
5
CVSSv2
CVE-2016-3012
IBM API Connect (aka APIConnect) prior to 5.0.3.0 with NPM prior to 2.2.8 includes certain internal server credentials in the software package, which might allow remote malicious users to bypass intended access restrictions by leveraging knowledge of these credentials.
Ibm Api Connect
Ibm Network Path Manager
4.6
CVSSv2
CVE-2018-12539
In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by...
Eclipse Openj9 0.8
Oracle Enterprise Manager Base Platform 13.2.0.0.0
Oracle Enterprise Manager Base Platform 13.3.0.0.0
4.3
CVSSv2
CVE-2020-4826
IBM API Connect 10.0.0.0 up to and including 10.0.1.0 and 2018.4.1.0 up to and including 2018.4.1.13 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM ...
Ibm Api Connect 10.0.0.0
Ibm Api Connect 10.0.1.0
Ibm Api Connect
4.3
CVSSv2
CVE-2020-4827
IBM API Connect 10.0.0.0 up to and including 10.0.1.0 and 2018.4.1.0 up to and including 2018.4.1.13 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM ...
Ibm Api Connect 10.0.0.0
Ibm Api Connect 10.0.1.0
Ibm Api Connect
4.3
CVSSv2
CVE-2020-4337
IBM API Connect 2018.4.1.0 up to and including 2018.4.1.12 could allow an malicious user to launch phishing attacks by tricking the server to generate user registration emails that contain malicious URLs. IBM X-Force ID: 177933.
Ibm Api Connect
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »