PT-2019-9991 · Ibm · Ibm Api Connect
Published
2019-06-25
·
Updated
2023-01-30
·
CVE-2018-2011
CVSS v2.0
5.0
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Fix
Information Disclosure
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Api Connect
Published
2019-06-25
·
Updated
2023-01-30
·
CVE-2018-2011
5.0
Medium
| Base vector | Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
IBM API Connect versions 2018.1 through 2018.4.1.5
Description:
The issue allows an attacker to obtain sensitive information from a specially crafted HTTP request, which could aid in further attacks against the system.
Recommendations:
For versions 2018.1 through 2018.4.1.5, update to a version that contains the fix for this issue to prevent sensitive information disclosure.
Fix
Information Disclosure