Home Unlabelled IBM Security Bulletin: API Connect is affected by a vulnerability that could allow a specially crafted HTTP request to execute system commands (CVE-2018-1469)

IBM Security Bulletin: API Connect is affected by a vulnerability that could allow a specially crafted HTTP request to execute system commands (CVE-2018-1469)

By
Tuesday, April 03, 2018
Read
Add Comment

Apr 3, 2018 9:01 am EDT

Categorized: High Severity

Share this post:

API Connect has addressed the following vulnerability. IBM API Connect Developer Portal could allow an unathenticated attacker to execute system commands using specially crafted HTTP requests.

CVE(s): CVE-2018-1469

Affected product(s) and affected version(s):

Affected API ConnectAffected Versions
IBM API Connect5.0.0.0-5.0.6.6
IBM API Connect5.0.7.0-5.0.7.2
IBM API Connect5.0.8.0-5.0.8.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg22014940
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140605



from IBM Product Security Incident Response Team https://ift.tt/2GunGun
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us