Vulnerabilities > IBM > APP Connect Enterprise

DATE CVE VULNERABILITY TITLE RISK
2024-01-18 CVE-2024-22317 Improper Restriction of Excessive Authentication Attempts vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.24 and 12.0.1.0 through 12.0.11.0 could allow a remote attacker to obtain sensitive information or cause a denial of service due to improper restriction of excessive authentication attempts.
network
low complexity
ibm CWE-307
critical
9.1
2023-10-14 CVE-2023-45176 Unspecified vulnerability in IBM APP Connect Enterprise and Integration BUS
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.10.0 and IBM Integration Bus 10.1 through 10.1.0.1 are vulnerable to a denial of service for integration nodes on Windows.
local
low complexity
ibm
5.5
2023-10-13 CVE-2023-40682 Information Exposure Through Log Files vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 12.0.1.0 through 12.0.8.0 contains an unspecified vulnerability that could allow a local privileged user to obtain sensitive information from API logs.
local
low complexity
ibm CWE-532
4.4
2023-02-12 CVE-2022-42444 Classic Buffer Overflow vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 11.0.0.8 through 11.0.0.19 and 12.0.1.0 through 12.0.5.0 is vulnerable to a buffer overflow.
network
low complexity
ibm CWE-120
6.5
2023-02-06 CVE-2022-42439 Information Exposure Through Log Files vulnerability in IBM products
IBM App Connect Enterprise 11.0.0.17 through 11.0.0.19 and 12.0.4.0 and 12.0.5.0 contains an unspecified vulnerability in the Discovery Connector nodes which may cause a 3rd party system’s credentials to be exposed to a privileged attacker.
network
low complexity
ibm CWE-532
4.9