Ibm App Connect Enterprise — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm App Connect Enterprise, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2024-22317 — CVSS 9.1 (critical): IBM App Connect Enterprise 11.0.0.1 through 11.0.0.24 and 12.0.1.0 through 12.0.11.0 could allow a remote attacker to obtain sensitive…
CVE-2022-42439 — CVSS 6.8 (medium): IBM App Connect Enterprise 11.0.0.17 through 11.0.0.19 and 12.0.4.0 and 12.0.5.0 contains an unspecified vulnerability in the Discovery…
CVE-2024-31904 — CVSS 6.5 (medium): IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 integration nodes could allow an authenticated user to…
CVE-2025-0799 — CVSS 6.5 (medium): IBM App Connect enterprise 12.0.1.0 through 12.0.12.10 and 13.0.1.0 through 13.0.2.1 could allow an authenticated user to write to an…
CVE-2025-36361 — CVSS 6.3 (medium): IBM App Connect Enterprise 13.0.1.0 through 13.0.4.2, and 12.0.1.0 through 12.0.12.17 could allow an authenticated user to perform…
CVE-2023-45176 — CVSS 6.2 (medium): IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.10.0 and IBM Integration Bus 10.1 through 10.1.0.1 are…
CVE-2026-5515 — CVSS 5.5 (medium): IBM App Connect Enterprise 13.0.1.0 through 13.0.7.0 stores potentially sensitive information in log files that could be read by a local…
CVE-2024-28761 — CVSS 5.4 (medium): IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 is vulnerable to HTML injection. A remote attacker…
CVE-2022-42444 — CVSS 4.9 (medium): IBM App Connect Enterprise 11.0.0.8 through 11.0.0.19 and 12.0.1.0 through 12.0.5.0 is vulnerable to a buffer overflow. A remote privileged…
CVE-2024-22356 — CVSS 4.9 (medium): IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.9.0 and IBM Integration Bus for z/OS 10.1 through…
CVE-2026-3602 — CVSS 4.7 (medium): IBM App Connect Enterprise 13.0.1.0 through 13.0.7.2, and 12.0.1.0 through 12.0.12.26 and IBM Integration Bus for z/OS 10.1.0.0 through…
CVE-2023-40682 — CVSS 4.4 (medium): IBM App Connect Enterprise 12.0.1.0 through 12.0.8.0 contains an unspecified vulnerability that could allow a local privileged user to…
CVE-2024-49338 — CVSS 4.4 (medium): IBM App Connect Enterprise 12.0.1.0 through 12.0.7.0and 13.0.1.0 under certain configurations could allow a privileged user to obtain JMS…
CVE-2024-31894 — CVSS 4.3 (medium): IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain sensitive user information using an…
CVE-2024-31893 — CVSS 4.3 (medium): IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain sensitive calendar information using an…
CVE-2024-28760 — CVSS 4.3 (medium): IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 dashboard is vulnerable to a denial of service due to…
CVE-2024-31895 — CVSS 4.3 (medium): IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain sensitive user information using an…