IBM App Connect Enterprise and IBM Integration Bus for z/OS information disclosure | CVE-2024-22356

NAME
__________
IBM App Connect Enterprise and IBM Integration Bus for z/OS information disclosure

Platforms Affected:
IBM App Connect Enterprise 11.0.0.1
IBM App Connect Enterprise 12.0.1.0
IBM Integration Bus 10.1
IBM App Connect Enterprise 12.0.9.0
IBM App Connect Enterprise 11.0.0.23
IBM Integration Bus 10.1.0.2

Risk Level:
4.9

Exploitability:
Unproven

Consequences:
Obtain Information

DESCRIPTION
__________

IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.9.0 and IBM Integration Bus for z/OS 10.1 through 10.1.0.2store potentially sensitive information in log or trace files that could be read by a privileged user. IBM X-Force ID: 280893.

CVSS 3.0 Information
__________

Privileges Required:
High

User Interaction:
None

Scope:
Unchanged

Access Vector:
Network


A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

To keep up to date follow us on the below channels.