IBM API Connect CVE-2019-4008 Information Disclosure Vulnerability
BID:106961
CVE-2019-4008 |Info
IBM API Connect CVE-2019-4008 Information Disclosure Vulnerability
| Bugtraq ID: | 106961 |
| Class: | Design Error |
| CVE: |
CVE-2019-4008 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 11 2019 12:00AM |
| Updated: | Feb 11 2019 12:00AM |
| Credit: | IBM |
| Vulnerable: |
IBM API Connect 2018.4.1 IBM API Connect 2018.3.7 IBM API Connect 2018.3.6 IBM API Connect 2018.2.5 IBM API Connect 2018.2.3 IBM API Connect 2018.2 IBM API Connect 2018.1 IBM API Connect 2018.4.1.1 IBM API Connect 2018.1 |
| Not Vulnerable: |
IBM API Connect 2018.4.1.2 |
Discussion
IBM API Connect CVE-2019-4008 Information Disclosure Vulnerability
IBM API Connect is prone to an information-disclosure vulnerability.
Remote attackers can exploit this issue to obtain sensitive information that may lead to further attacks.
IBM API Connect 2018.1 through 2018.4.1.1 are vulnerable.
IBM API Connect is prone to an information-disclosure vulnerability.
Remote attackers can exploit this issue to obtain sensitive information that may lead to further attacks.
IBM API Connect 2018.1 through 2018.4.1.1 are vulnerable.
Exploit / POC
IBM API Connect CVE-2019-4008 Information Disclosure Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
IBM API Connect CVE-2019-4008 Information Disclosure Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
IBM API Connect CVE-2019-4008 Information Disclosure Vulnerability
References:
References: