CVE-2025-13490

EPSS 0.01%
Veröffentlicht 03.03.2026 19:58:18
Zuletzt bearbeitet 04.03.2026 22:16:11
Quelle psirt@us.ibm.com
CVE-Watchlists
Login
Unerledigt
Login

IBM App Connect Enterprise Certified Container IntegrationServer and IntegrationRuntime operands that report metrics are vulnerable to loss of confidentiality

IBM App Connect Operator versions CD 11.3.0 through 11.6.0 and 12.1.0 through 12.20.0, LTS versions 12.0.0 through 12.0.20, and IBM App Connect Enterprise Certified Containers Operands versions CD 12.0.11.2‑r1 through 12.0.12.5‑r1 and 13.0.1.0‑r1 through 13.0.6.1‑r1, and LTS versions 12.0.12‑r1 through 12.0.12‑r20, contain a vulnerability in which the IBM App Connect Enterprise Certified Container transmits data in clear text, potentially allowing an attacker to intercept and obtain sensitive information through man‑in‑the‑middle techniques.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 48 VulnDex Vulnerability Enrichment 2

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.11.2 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.11.3 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater1 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater10 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater11 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater12 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater13 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater14 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater15 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater16 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater17 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater18 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater19 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater2 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater20 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater3 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater4 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater5 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater6 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater7 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater8 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12 Updater9 SwEditionlts

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12.0 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12.0 Updater2 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12.2 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12.3 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12.4 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version12.0.12.5 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.1.0 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.1.0 Updater2 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.1.1 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.2.0 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.2.1 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.2.2 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.2.2 Updater2 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.3.0 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.3.1 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.4.0 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.4.1 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.4.2 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.5.0 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.5.1 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.5.2 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.6.0 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Enterprise Certified Containers Operands Version13.0.6.1 Updater1 SwEditioncontinuous_delivery

Ibm ≫ App Connect Operator SwEditioncontinuous_delivery Version >= 11.3.0 <= 11.6.0

Ibm ≫ App Connect Operator SwEditionlts Version >= 12.0.0 <= 12.0.20

Ibm ≫ App Connect Operator SwEditioncontinuous_delivery Version >= 12.1.0 <= 12.20.1

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.011

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
psirt@us.ibm.com	5.9	2.2	3.6	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-319 Cleartext Transmission of Sensitive Information

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

https://www.ibm.com/support/pages/node/7262271

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-13490

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-13490

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-13490

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-13490