IBM API Connect CVE-2018-1932 Information Disclosure Vulnerability

Summary

IBM API Connect is an integrated solution for managing the API lifecycle from IBM. The solution supports creating, running, managing, and securing apis, microservices, and more.

IBM API Connect is prone to a remote information-disclosure vulnerability. Remote attackers can exploit this issue to obtain sensitive information that may lead to further attacks.IBM API Connect 5.0.0.0 through 5.0.8.4 are vulnerable.

Solution

At present, the vendor has released the patches to repair loopholes, patch for a link: https://www-01.ibm.com/support/docview.wss? Uid = ibm10793601