IBM Integration Bus 9.0 and 10.0 and WebSphere Message Broker SOAP FLOWS is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources. IBM Reference #: 1997918.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm websphere message broker 8.0 |
||
ibm integration bus 9.0 |
||
ibm integration bus 10.0 |