SB2023051921 - Multiple vulnerabilities in IBM App Connect Enterprise and IBM Integration Bus

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2023051921

SB2023051921 - Multiple vulnerabilities in IBM App Connect Enterprise and IBM Integration Bus

Published: May 19, 2023

Security Bulletin ID SB2023051921
Severity
Medium
Patch available
YES
Number of vulnerabilities 3
Exploitation vector Remote access
Highest impact Denial of service

Breakdown by Severity

Medium 33% Low 67%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 3 secuirty vulnerabilities.


1) Insufficient verification of data authenticity (CVE-ID: CVE-2021-37533)

The vulnerability allows an attacker to redirect victim to a malicious host.

The vulnerability exists due to the application trusts the host from PASV response by default. A remote attacker can trick the victim into connecting to an attacker controlled FTP server and then redirect the application to another host.


2) Inclusion of Sensitive Information in Log Files (CVE-ID: CVE-2022-42436)

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to software stores sensitive information into log files in Managed File Transfer. A local user can read the log files and gain access to sensitive data.


3) Input validation error (CVE-ID: CVE-2022-43919)

The vulnerability allows a remote user to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input when handling PCF messages. A remote user can send a specially crafted message to the application and perform a denial of service (DoS) attack.


Remediation

Install update from vendor's website.

References