Vulnerabilities > IBM > APP Connect Enterprise > 11.0.0.19

DATE CVE VULNERABILITY TITLE RISK
2024-05-22 CVE-2024-31904 Unspecified vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 integration nodes could allow an authenticated user to cause a denial of service due to an uncaught exception.
network
low complexity
ibm
6.5
6.5
2024-05-14 CVE-2024-28760 Allocation of Resources Without Limits or Throttling vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 dashboard is vulnerable to a denial of service due to improper restrictions of resource allocation.
network
low complexity
ibm CWE-770
4.3
4.3
2024-05-14 CVE-2024-28761 Cross-site Scripting vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 is vulnerable to HTML injection.
network
low complexity
ibm CWE-79
5.4
5.4
2024-03-26 CVE-2024-22356 Improper Encoding or Escaping of Output vulnerability in IBM APP Connect Enterprise and Integration BUS
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.9.0 and IBM Integration Bus for z/OS 10.1 through 10.1.0.2store potentially sensitive information in log or trace files that could be read by a privileged user.
network
low complexity
ibm CWE-116
4.9
4.9
2024-01-18 CVE-2024-22317 Unspecified vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.24 and 12.0.1.0 through 12.0.11.0 could allow a remote attacker to obtain sensitive information or cause a denial of service due to improper restriction of excessive authentication attempts.
network
low complexity
ibm
critical
 9.1
9.1
2023-10-14 CVE-2023-45176 Unspecified vulnerability in IBM APP Connect Enterprise and Integration BUS
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.10.0 and IBM Integration Bus 10.1 through 10.1.0.1 are vulnerable to a denial of service for integration nodes on Windows.
local
low complexity
ibm
5.5
5.5
2023-02-12 CVE-2022-42444 Classic Buffer Overflow vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 11.0.0.8 through 11.0.0.19 and 12.0.1.0 through 12.0.5.0 is vulnerable to a buffer overflow.
network
low complexity
ibm CWE-120
6.5
6.5
2023-02-06 CVE-2022-42439 Information Exposure Through Log Files vulnerability in IBM products
IBM App Connect Enterprise 11.0.0.17 through 11.0.0.19 and 12.0.4.0 and 12.0.5.0 contains an unspecified vulnerability in the Discovery Connector nodes which may cause a 3rd party system’s credentials to be exposed to a privileged attacker.
network
low complexity
ibm CWE-532
4.9
4.9