CVE-2019-4051

Summary

Some URIs in IBM API Connect 2018.1 and 2018.4.1.3 disclose system specification information like the machine id, system uuid, filesystem paths, network interface names along with their mac addresses. An attacker can use this information in targeted attacks. IBM X-Force ID: 156542.

Affected Software

VendorProductVersion RangeStatus
IBMAPI Connect2018.1affected
IBMAPI Connect2018.4.1.3affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References