Home Unlabelled IBM Security Bulletin: API Connect Developer Portal is affected by authenticated user access to sensitive information vulnerability (CVE-2017-1785)

IBM Security Bulletin: API Connect Developer Portal is affected by authenticated user access to sensitive information vulnerability (CVE-2017-1785)

By
Saturday, February 03, 2018
Read
Add Comment

API Connect has addressed the following vulnerability. API Connect Developer Portal could allow an authenticated remote user to modify query parameters to obtain sensitive information.

CVE(s): CVE-2017-1785

Affected product(s) and affected version(s):

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg22013061
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/136859

The post IBM Security Bulletin: API Connect Developer Portal is affected by authenticated user access to sensitive information vulnerability (CVE-2017-1785) appeared first on IBM PSIRT Blog.

Affected API ConnectAffected Versions
IBM API Connect5.0.7.0-5.0.7.2
IBM API Connect5.0.8.0-5.0.8.1


from IBM Product Security Incident Response Team http://ift.tt/2DXsdjS
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us