Vulnerabilities > IBM > API Connect > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-09-13 CVE-2017-1556 Improper Input Validation vulnerability in IBM API Connect 5.0.7.0/5.0.7.1/5.0.7.2
IBM API Connect 5.0.7.0 through 5.0.7.2 is vulnerable to a regular expression attack that could allow an authenticated attacker to use a regex and cause the system to slow or hang.
network
low complexity
ibm CWE-20
6.5
2017-07-31 CVE-2017-1386 Weak Password Requirements vulnerability in IBM API Connect and API Management
IBM API Connect 5.0.0.0 could allow a user to bypass policy restrictions and create non-compliant passwords which could be intercepted and decrypted using man in the middle techniques.
network
high complexity
ibm CWE-521
5.9
2017-06-27 CVE-2017-1328 Unspecified vulnerability in IBM API Connect
IBM API Connect 5.0.0.0 - 5.0.6.0 could allow a remote attacker to bypass security restrictions of the api, caused by improper handling of security policy.
network
low complexity
ibm
5.3