Every CVE whose affected-product data names Ibm Api Management, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2013-0559 — CVSS 6.4 (medium): Unspecified vulnerability in IBM API Management 2.0 before 2.0.0.1 allows remote attackers to access tenant APIs, and consequently obtain…
CVE-2017-1386 — CVSS 5.9 (medium): IBM API Connect 5.0.0.0 could allow a user to bypass policy restrictions and create non-compliant passwords which could be intercepted and…
CVE-2015-0149 — CVSS 5.5 (medium): The developer portal in IBM API Management 3.0 before 3.0.4.1 does not properly restrict access to the public and private APIs, which…
CVE-2014-6172 — CVSS 5.0 (medium): IBM API Management 3.0 before 3.0.4.0 IF1 allows remote attackers to obtain sensitive analytics information in an encrypted form via…
CVE-2014-3036 — CVSS 4.3 (medium): Unspecified vulnerability in IBM API Management 3.0.0.0, when basic authentication is used for APIs, allows remote attackers to bypass…
CVE-2014-6133 — CVSS 2.1 (low): IBM API Management 3.x before 3.0.1.0 allows local users to obtain sensitive ciphertext information via unspecified vectors.