Ibm

App Connect Enterprise Certified Container

15 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2025-36133

  • EPSS 0.02%
  • Veröffentlicht 01.09.2025 11:56:19
  • Zuletzt bearbeitet 02.09.2025 15:55:25

IBM App Connect Enterprise Certified Container CD: 9.2.0 through 11.6.0, 12.1.0 through 12.14.0, and 12.0 LTS: 12.0.0 through 12.0.14stores potentially sensitive information in log files during installation that could be read by a local user on the c...

5.5

CVE-2025-1993

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 09.05.2025 17:12:10
  • Zuletzt bearbeitet 20.08.2025 02:46:19

IBM App Connect Enterprise Certified Container 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, 12.4, 12.5, 12.6, 12.7, 12.8, 12.9, and 12.10 DesignerAuthoring instances store their flows in a dat...

6.5

CVE-2024-52362

  • EPSS 0.11%
  • Veröffentlicht 12.03.2025 14:04:10
  • Zuletzt bearbeitet 02.04.2025 12:37:19

IBM App Connect Enterprise Certified Container 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, 12.4, 12.5, 12.6, 12.7, and 12.8 could allow an authenticated user to cause a denial of se...

9.1

CVE-2022-43916

  • EPSS 0.04%
  • Veröffentlicht 30.01.2025 12:15:26
  • Zuletzt bearbeitet 13.08.2025 17:50:14

IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, 12.4, 12.5, 12.6, and 12.7 Pods do not restrict network egress for Pods that are used...

5.5

CVE-2022-22491

  • EPSS 0.02%
  • Veröffentlicht 09.01.2025 14:15:25
  • Zuletzt bearbeitet 20.06.2025 17:54:49

IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, and 12.4 operands running in Red Hat OpenShift do not restrict writing to the local f...

8.8

CVE-2024-51465

  • EPSS 0.25%
  • Veröffentlicht 04.12.2024 14:15:20
  • Zuletzt bearbeitet 14.08.2025 01:17:24

IBM App Connect Enterprise Certified Container 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, and 12.3 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request.

8.1

CVE-2022-43915

  • EPSS 0.11%
  • Veröffentlicht 24.08.2024 12:15:04
  • Zuletzt bearbeitet 21.09.2024 10:15:04

IBM App Connect Enterprise Certified Container 5.0, 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, and 12.1 does not limit calls to unshare in running Pods. This can allow a user with privileged a...

6.1

CVE-2022-43874

  • EPSS 0.09%
  • Veröffentlicht 15.03.2023 18:15:10
  • Zuletzt bearbeitet 21.11.2024 07:27:18

IBM App Connect Enterprise Certified Container 4.1, 4.2, 5.0, 5.1, 5.2, 6.0, 6.1, 6.2, and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended function...

4.9

CVE-2022-42439

  • EPSS 0.06%
  • Veröffentlicht 06.02.2023 21:15:09
  • Zuletzt bearbeitet 21.11.2024 07:24:58

IBM App Connect Enterprise 11.0.0.17 through 11.0.0.19 and 12.0.4.0 and 12.0.5.0 contains an unspecified vulnerability in the Discovery Connector nodes which may cause a 3rd party system’s credentials to be exposed to a privileged attacker. IBM X-Fo...

6.5

CVE-2022-43922

  • EPSS 0.03%
  • Veröffentlicht 01.02.2023 18:15:10
  • Zuletzt bearbeitet 26.03.2025 19:15:18

IBM App Connect Enterprise Certified Container 4.1, 4.2, 5.0, 5.1, 5.2, 6.0, 6.1, and 6.2 could disclose sensitive information to an attacker due to a weak hash of an API Key in the configuration. IBM X-Force ID: 241583.