CVE-2017-1328

Name of the Vulnerable Software and Affected Versions IBM API Connect versions 5.0.0.0 through 5.0.6.0

Description The issue is caused by improper handling of security policy, allowing a remote attacker to bypass security restrictions of the API. An attacker could exploit this by crafting a suitable request to bypass security and use the vulnerable API.

Recommendations For versions 5.0.0.0 through 5.0.6.0, update to a version that properly handles security policy to prevent bypassing of security restrictions.