Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM App Connect Enterprise and IBM Integration Bus for z/OS information disclosure
Vulnerability Description
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.9.0 and IBM Integration Bus for z/OS 10.1 through 10.1.0.2store potentially sensitive information in log or trace files that could be read by a privileged user. IBM X-Force ID: 280893.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
日志输出的转义处理不恰当
Vulnerability Title
多款IBM产品安全漏洞
Vulnerability Description
IBM App Connect Enterprise是美国国际商业机器(IBM)公司的一个操作系统。IBM App Connect Enterprise 将现有业界信任的 IBM Integration Bus 技术与 IBM App Connect Professional 以及新的云本机技术进行了组合,提供一个可满足现代数字企业全面集成需求的平台。 部分IBM产品存在安全漏洞,该漏洞源于将潜在的敏感信息存储在特权用户可以读取的日志或跟踪文件中。以下产品及版本受到影响:IBM App Connect E
CVSS Information
N/A
Vulnerability Type
N/A