IBM App Connect Enterprise Certified Container
By the Year
In 2024 there have been 0 vulnerabilities in IBM App Connect Enterprise Certified Container . Last year App Connect Enterprise Certified Container had 1 security vulnerability published. Right now, App Connect Enterprise Certified Container is on track to have less security vulnerabilities in 2024 than it did last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 1 | 6.10 |
2022 | 2 | 5.70 |
2021 | 1 | 2.30 |
2020 | 1 | 5.40 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new App Connect Enterprise Certified Container vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM App Connect Enterprise Certified Container Security Vulnerabilities
IBM App Connect Enterprise Certified Container 4.1, 4.2, 5.0, 5.1, 5.2, 6.0, 6.1, 6.2, and 7.0 is vulnerable to cross-site scripting
CVE-2022-43874
6.1 - Medium
- March 15, 2023
IBM App Connect Enterprise Certified Container 4.1, 4.2, 5.0, 5.1, 5.2, 6.0, 6.1, 6.2, and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 239963.
XSS
IBM App Connect Enterprise Certified Container 4.2 could
CVE-2022-31770
4.9 - Medium
- July 05, 2022
IBM App Connect Enterprise Certified Container 4.2 could allow a user from the administration console to cause a denial of service by creating a specially crafted request. IBM X-Force ID: 228221.
IBM App Connect Enterprise Certified Container Dashboard UI (IBM App Connect Enterprise Certified Container 1.5
CVE-2022-22404
6.5 - Medium
- April 01, 2022
IBM App Connect Enterprise Certified Container Dashboard UI (IBM App Connect Enterprise Certified Container 1.5, 2.0, 2.1, 3.0, and 3.1) may be vulnerable to denial of service due to excessive rate limiting.
Allocation of Resources Without Limits or Throttling
IBM App Connect Enterprise Certified Container 1.0, 1.1, 1.2, and 1.3 could
CVE-2021-29759
2.3 - Low
- July 07, 2021
IBM App Connect Enterprise Certified Container 1.0, 1.1, 1.2, and 1.3 could allow a privileged user to obtain sensitive information from internal log files. IBM X-Force ID: 202212.
Insertion of Sensitive Information into Log File
IBM App Connect Enterprise Certified Container 1.0.0, 1.0.1, 1.0.2, 1.0.3, and 1.0.4 could
CVE-2020-4785
5.4 - Medium
- November 03, 2020
IBM App Connect Enterprise Certified Container 1.0.0, 1.0.1, 1.0.2, 1.0.3, and 1.0.4 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 189219.
Clickjacking
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM App Connect Enterprise Certified Container or by IBM? Click the Watch button to subscribe.