PT-2019-9991 · Ibm · Ibm Api Connect
Published
2019-06-25
·
Updated
2023-01-30
·
CVE-2018-2011
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM API Connect versions 2018.1 through 2018.4.1.5
Description
The issue allows an attacker to obtain sensitive information from a specially crafted HTTP request, which could aid in further attacks against the system.
Recommendations
For versions 2018.1 through 2018.4.1.5, update to a version that contains the fix for this issue to prevent sensitive information disclosure.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Api Connect