Vulnerabilities > IBM > APP Connect Enterprise > 11.0.0.21

DATE CVE VULNERABILITY TITLE RISK
2024-05-22 CVE-2024-31904 Unspecified vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 integration nodes could allow an authenticated user to cause a denial of service due to an uncaught exception.
network
low complexity
ibm
6.5
6.5
2024-05-14 CVE-2024-28760 Allocation of Resources Without Limits or Throttling vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 dashboard is vulnerable to a denial of service due to improper restrictions of resource allocation.
network
low complexity
ibm CWE-770
4.3
4.3
2024-05-14 CVE-2024-28761 Cross-site Scripting vulnerability in IBM APP Connect Enterprise
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 is vulnerable to HTML injection.
network
low complexity
ibm CWE-79
5.4
5.4
2024-03-26 CVE-2024-22356 Improper Encoding or Escaping of Output vulnerability in IBM APP Connect Enterprise and Integration BUS
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.9.0 and IBM Integration Bus for z/OS 10.1 through 10.1.0.2store potentially sensitive information in log or trace files that could be read by a privileged user.
network
low complexity
ibm CWE-116
4.9
4.9