CVE-2018-1548Sensitive Information Exposure in IBM API Connect

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 62.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM API Connect
Timeline
PublishedJul 9
Latest updateMay 13

Description

IBM API Connect 2018.1.0.0, 2018.2.1, 2018.2.2, 2018.2.3, and 2018.2.4 contains a vulnerability that could allow an authenticated user to obtain sensitive information. IBM X-Force ID: 142657.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

NVDibm/api_connect2018.1.0.02018.2.4
CVEListV5ibm/api_connect5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-35pm-xrv5-x4qv: IBM API Connect 20182022-05-13
CVEList
CVE-2018-1548: IBM API Connect 20182018-07-09
CVE-2018-1548 — Sensitive Information Exposure in IBM | cvebase