Medium Severity

Security Bulletin: App Connect Enterprise Certified Container Designer instances may be vulnerable to CVE-2020-7760

Share this post:

Some flow editor dialogs in a Designer instance App Connect Enterprise Certified Container may be vulnerable to a regular expression denial of service flaw that could make that Designer instance unresponsive.

CVE(s): CVE-2020-7760

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
App Connect Enterprise Certified Container 1.0.0 with Operator
App Connect Enterprise Certified Container 1.0.1 with Operator
App Connect Enterprise Certified Container 1.0.2 with Operator
App Connect Enterprise Certified Container 1.0.3 with Operator
App Connect Enterprise Certified Container 1.0.4 with Operator

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6360723
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190938

More stories

Security Bulletin: XSS Security Vulnerabilty Affects Mailbox UI of IBM Sterling B2B Integrator (CVE-2021-20562)

Jul 26, 2021 8:02 pm EDT | Medium Severity

IBM Sterling B2B Integrator has addressed a XSS vulnerability affecting the mailbox UI. ...read more


Security Bulletin: IBM i2 Analyst's Notebook Premium has an information disclosure vulnerability (CVE-2021-29784)

Jul 23, 2021 8:20 pm EDT | Medium Severity

More information than is necessary is sometimes displayed in i2 Analyst's Notebook Premium error dialogs. ...read more


Security Bulletin: IBM QRadar SIEM uses weaker than expected cryptographic algorithms (CVE-2021-20337)

Jul 23, 2021 8:17 pm EDT | Medium Severity

IBM QRadar SIEM uses weaker than expected cryptographic algorithms ...read more