IBM Integration Bus
By the Year
In 2024 there have been 1 vulnerability in IBM Integration Bus with an average score of 6.5 out of ten. Last year Integration Bus had 1 security vulnerability published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Integration Bus in 2024 could surpass last years number. However, the average CVE base score of the vulnerabilities in 2024 is greater by 1.00.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 1 | 6.50 |
| 2023 | 1 | 5.50 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 1 | 5.30 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Integration Bus vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Integration Bus Security Vulnerabilities
The IBM Integration Bus for z/OS 10.1 through 10.1.0.2 AdminAPI is vulnerable to a denial of service due to file system exhaustion
CVE-2024-22332
6.5 - Medium
- February 09, 2024
The IBM Integration Bus for z/OS 10.1 through 10.1.0.2 AdminAPI is vulnerable to a denial of service due to file system exhaustion. IBM X-Force ID: 279972.
Resource Exhaustion
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23
CVE-2023-45176
5.5 - Medium
- October 14, 2023
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.10.0 and IBM Integration Bus 10.1 through 10.1.0.1 are vulnerable to a denial of service for integration nodes on Windows. IBM X-Force ID: 247998.
IBM App Connect V11.0.0.0 through V11.0.0.1
CVE-2018-1801
5.3 - Medium
- February 04, 2019
IBM App Connect V11.0.0.0 through V11.0.0.1, IBM Integration Bus V10.0.0.0 through V10.0.0.13, IBM Integration Bus V9.0.0.0 through V9.0.0.10, and WebSphere Message Broker V8.0.0.0 through V8.0.0.9 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to consume memory resources. IBM X-Force ID: 149639.
XXE
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Websphere Message Broker or by IBM? Click the Watch button to subscribe.
