IBM API Connect v2018.1 and 2018.4.1 is affected by an information disclosure vulnerability in the consumer API. Any registered user can obtain a list of all other users in all other orgs, including email id/names, etc. IBM X-Force ID: 155148.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2019-03-11T22:00:00Z

Updated: 2024-09-17T03:59:22.652Z

Reserved: 2017-12-13T00:00:00

Link: CVE-2018-2009

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-03-11T22:29:00.813

Modified: 2024-11-21T04:03:35.300

Link: CVE-2018-2009

cve-icon Redhat

No data.