Vulnerabilities > IBM > APP Connect Enterprise Certified Container > 5.0

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-24	CVE-2022-43915	Incorrect Permission Assignment for Critical Resource vulnerability in IBM APP Connect Enterprise Certified Container IBM App Connect Enterprise Certified Container 5.0, 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, and 12.1 does not limit calls to unshare in running Pods. network low complexity ibm CWE-732	8.1
2023-03-15	CVE-2022-43874	Cross-site Scripting vulnerability in IBM APP Connect Enterprise Certified Container IBM App Connect Enterprise Certified Container 4.1, 4.2, 5.0, 5.1, 5.2, 6.0, 6.1, 6.2, and 7.0 is vulnerable to cross-site scripting. network low complexity ibm CWE-79	6.1
2023-02-06	CVE-2022-42439	Information Exposure Through Log Files vulnerability in IBM products IBM App Connect Enterprise 11.0.0.17 through 11.0.0.19 and 12.0.4.0 and 12.0.5.0 contains an unspecified vulnerability in the Discovery Connector nodes which may cause a 3rd party system’s credentials to be exposed to a privileged attacker. network low complexity ibm CWE-532	4.9
2023-02-01	CVE-2022-43922	Inadequate Encryption Strength vulnerability in IBM APP Connect Enterprise Certified Container IBM App Connect Enterprise Certified Container 4.1, 4.2, 5.0, 5.1, 5.2, 6.0, 6.1, and 6.2 could disclose sensitive information to an attacker due to a weak hash of an API Key in the configuration. network low complexity ibm CWE-326	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.