CVE-2024-22356
published 2024-03-26CVE-2024-22356: IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.9.0 and IBM Integration Bus for z/OS 10.1 through 10.1.0.2store potentially…
medium4.9CVSS 3.1
AVNACLPRHUINSUCHINAN
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.9.0 and IBM Integration Bus for z/OS 10.1 through 10.1.0.2store potentially sensitive information in log or trace files that could be read by a privileged user. IBM X-Force ID: 280893.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | app_connect_enterprise | >= 11.0.0.1 < 11.0.0.24 | 11.0.0.24 |
| ibm | app_connect_enterprise | 11.0.0.1 – 11.0.0.23 | — |
| ibm | app_connect_enterprise | >= 12.0.1.0 < 12.0.10.0 | 12.0.10.0 |
| ibm | app_connect_enterprise | 12.0.1.0 – 12.0.9.0 | — |
| ibm | integration_bus | >= 10.1 < 10.1.0.3 | 10.1.0.3 |
| ibm | integration_bus | 10.1 – 10.1.0.2 | — |