IBM API Connect v2018.1 and 2018.4.1 is affected by an information disclosure vulnerability in the consumer API. Any registered user can obtain a list of all other users in all other orgs, including email id/names, etc. IBM X-Force ID: 155148.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2019-03-11T22:00:00Z
Updated: 2024-09-17T03:59:22.652Z
Reserved: 2017-12-13T00:00:00
Link: CVE-2018-2009
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-03-11T22:29:00.813
Modified: 2024-11-21T04:03:35.300
Link: CVE-2018-2009
Redhat
No data.