IBM API Connect 5.0.0.0 through 5.0.8.11 could allow a user to potentially inject code due to unsanitized user input. IBM X-Force ID: 202774.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HIBM Api Connect
APPIbm5.0.0.0 – 5.0.8.11
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2025-13915CRITICAL9.8PL ✓ten sam produkt
IBM API Connect — obejście mechanizmów uwierzytelniania (Auth Bypass)
CVE-2021-29715CRITICAL9.1ten sam produkt
IBM API Connect 5.0.0.0 through 5.0.8.11 could alllow a remote user to obtain sensitive information or conduct...
CVE-2020-4899CRITICAL9.1ten sam produkt
IBM API Connect 5.0.0.0 through 5.0.8.10 could potentially leak sensitive information or allow for data corrup...
CVE-2019-4203CRITICAL9.8ten sam produkt
IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal can be exploited by app developers to download arbitrary ...
CVE-2019-4202CRITICAL10.0ten sam produkt
IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal is vulnerable to command injection. An attacker with a sp...