IBM API Connect (aka APIConnect) prior to 5.0.3.0 with NPM prior to 2.2.8 includes certain internal server credentials in the software package, which might allow remote malicious users to bypass intended access restrictions by leveraging knowledge of these credentials.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm api connect |
||
ibm network path manager |