Multiple vulnerabilities in IBM App Connect Enterprise and IBM Integration Bus
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2020-7769 CVE-2020-28168 |
| CWE-ID | CWE-74 CWE-918 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
IBM Integration Bus Server applications / Other server solutions IBM App Connect Enterprise Universal components / Libraries / Software for developers |
| Vendor | IBM Corporation |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Improper Neutralization of Special Elements in Output Used by a Downstream Component
EUVDB-ID: #VU76973
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2020-7769
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to use of crafted recipient email addresses. A remote unauthenticated attacker can trigger the vulnerability resulting in arbitrary command flag injection in sendmail transport for sending mails.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Integration Bus: All versions
IBM App Connect Enterprise: before 11.0.0.11
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_integration_bus:*:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_app_connect_enterprise:*:*:*:*:*:*:*:*
http://www.ibm.com/support/pages/node/6403183
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Server-Side Request Forgery (SSRF)
EUVDB-ID: #VU49251
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2020-28168
CWE-ID:
CWE-918 - Server-Side Request Forgery (SSRF)
Exploit availability: No
DescriptionThe disclosed vulnerability allows a remote attacker to perform SSRF attacks.
The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address and trick the application to initiate requests to arbitrary systems.
Successful exploitation of this vulnerability may allow a remote attacker gain access to sensitive data, located in the local network or send malicious requests to other servers from the vulnerable system.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Integration Bus: All versions
IBM App Connect Enterprise: before 11.0.0.11
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_integration_bus:*:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_app_connect_enterprise:*:*:*:*:*:*:*:*
http://www.ibm.com/support/pages/node/6403183
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
