Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm app connect vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-28760
IBM App Connect Enterprise 11.0.0.1 up to and including 11.0.0.25 and 12.0.1.0 up to and including 12.0.12.0 dashboard is vulnerable to a denial of service due to improper restrictions of resource allocation. IBM X-Force ID: 285244.
NA
CVE-2024-28761
IBM App Connect Enterprise 11.0.0.1 up to and including 11.0.0.25 and 12.0.1.0 up to and including 12.0.12.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the secur...
NA
CVE-2024-22356
IBM App Connect Enterprise 11.0.0.1 up to and including 11.0.0.23, 12.0.1.0 up to and including 12.0.9.0 and IBM Integration Bus for z/OS 10.1 up to and including 10.1.0.2store potentially sensitive information in log or trace files that could be read by a privileged user. IBM X-...
9.1
CVSSv3
CVE-2024-22317
IBM App Connect Enterprise 11.0.0.1 up to and including 11.0.0.24 and 12.0.1.0 up to and including 12.0.11.0 could allow a remote malicious user to obtain sensitive information or cause a denial of service due to improper restriction of excessive authentication attempts. IBM X-Fo...
Ibm App Connect Enterprise
5.5
CVSSv3
CVE-2023-45176
IBM App Connect Enterprise 11.0.0.1 up to and including 11.0.0.23, 12.0.1.0 up to and including 12.0.10.0 and IBM Integration Bus 10.1 up to and including 10.1.0.1 are vulnerable to a denial of service for integration nodes on Windows. IBM X-Force ID: 247998.
Ibm Integration Bus 10.1
Ibm App Connect Enterprise
4.4
CVSSv3
CVE-2023-40682
IBM App Connect Enterprise 12.0.1.0 up to and including 12.0.8.0 contains an unspecified vulnerability that could allow a local privileged user to obtain sensitive information from API logs. IBM X-Force ID: 263833.
Ibm App Connect Enterprise
6.1
CVSSv3
CVE-2022-43874
IBM App Connect Enterprise Certified Container 4.1, 4.2, 5.0, 5.1, 5.2, 6.0, 6.1, 6.2, and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to c...
Ibm App Connect Enterprise Certified Container 4.2
Ibm App Connect Enterprise Certified Container 5.0
Ibm App Connect Enterprise Certified Container 4.1
Ibm App Connect Enterprise Certified Container 5.1
Ibm App Connect Enterprise Certified Container 5.2
Ibm App Connect Enterprise Certified Container 6.0
Ibm App Connect Enterprise Certified Container 6.1
Ibm App Connect Enterprise Certified Container 6.2
Ibm App Connect Enterprise Certified Container 7.0
6.5
CVSSv3
CVE-2022-42444
IBM App Connect Enterprise 11.0.0.8 up to and including 11.0.0.19 and 12.0.1.0 up to and including 12.0.5.0 is vulnerable to a buffer overflow. A remote privileged user could overflow a buffer and cause the application to crash. IBM X-Force ID: 238538.
Ibm App Connect Enterprise
4.9
CVSSv3
CVE-2022-42439
IBM App Connect Enterprise 11.0.0.17 up to and including 11.0.0.19 and 12.0.4.0 and 12.0.5.0 contains an unspecified vulnerability in the Discovery Connector nodes which may cause a 3rd party system’s credentials to be exposed to a privileged attacker. IBM X-Force ID: 2382...
Ibm App Connect Enterprise
Ibm App Connect Enterprise 12.0.4.0
Ibm App Connect Enterprise 12.0.5.0
Ibm App Connect Enterprise Certified Container 4.1
Ibm App Connect Enterprise Certified Container 4.2
Ibm App Connect Enterprise Certified Container 5.0
Ibm App Connect Enterprise Certified Container 5.1
Ibm App Connect Enterprise Certified Container 5.2
Ibm App Connect Enterprise Certified Container 6.0
6.5
CVSSv3
CVE-2022-43922
IBM App Connect Enterprise Certified Container 4.1, 4.2, 5.0, 5.1, 5.2, 6.0, 6.1, and 6.2 could disclose sensitive information to an attacker due to a weak hash of an API Key in the configuration. IBM X-Force ID: 241583.
Ibm App Connect Enterprise Certified Container 4.1
Ibm App Connect Enterprise Certified Container 4.2
Ibm App Connect Enterprise Certified Container 5.0
Ibm App Connect Enterprise Certified Container 5.1
Ibm App Connect Enterprise Certified Container 5.2
Ibm App Connect Enterprise Certified Container 6.0
Ibm App Connect Enterprise Certified Container 6.1
Ibm App Connect Enterprise Certified Container 6.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »