Medium Severity

Security Bulletin: App Connect Enterprise Certified Container is vulnerable to a regular expression infinite loop (NODE-SECURITY-1488)

Sep 28, 2020 8:00 pm EDT

Categorized: Medium Severity

Share this post:

App Connect Enterprise Certified Container is vulnerable to a regular expression infinite loop that would cause the Designer UI to become unresponsive.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
App Connect Enterprise Certified Container 1.0.0 with Operator
App Connect Enterprise Certified Container 1.0.1 with Operator

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6338713


Previous Post

Security Bulletin: IBM Java SDK and IBM Java Runtime for IBM i is affected by CVE-2020-2590

Next Post

Security Bulletin: IBM Cloud Private is vulnerable to Kubernetes vulnerabilities (CVE-2020-8557, CVE-2020-8559)
More stories

Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring returns potentially sensitive information in headers which could lead to further attacks against the system.

Mar 8, 2021 7:00 pm EST | Medium Severity

IBM Cloud Pak for Multicloud Management Monitoring returns potentially sensitive information in headers which could lead to further attacks against the system. ...read more

Security Bulletin: Google Protocol Buffers as used by IBM QRadar SIEM is vulnerable to arbitrary code execution (CVE-2015-5237)

Mar 8, 2021 7:00 pm EST | Medium Severity

Google Protocol Buffers as used by IBM QRadar SIEM is vulnerable to arbitrary code execution ...read more

Security Bulletin: Information leakage vulnerability affect IBM Business Automation Workflow – CVE-2021-20358

Mar 8, 2021 7:00 pm EST | Medium Severity

IBM Business Automation Workflow may leak sensitive information in trace when emitting events for Business Automation Insights. ...read more