IBM API Connect CVE-2018-1932 Information Disclosure Vulnerability
- Date Published:2019-01-10
- Last Updated:2019-01-11
- Version Affected: IBM API Connect
- CVE: CVE-2018-1932 | 106486
IBM API Connect is an integrated solution for managing the API lifecycle from IBM. The solution supports creating, running, managing, and securing apis, microservices, and more.
IBM API Connect is prone to a remote information-disclosure vulnerability. Remote attackers can exploit this issue to obtain sensitive information that may lead to further attacks.IBM API Connect 18.104.22.168 through 22.214.171.124 are vulnerable.
At present, the vendor has released the patches to repair loopholes, patch for a link: https://www-01.ibm.com/support/docview.wss? Uid = ibm10793601