CNNVD-202512-4829 Information
CNNVD ID
CNNVD-202512-4829
Related CVE
- CNNVD Published: 2025-12-26
Description (Chinese)
IBM API Connect(APIConnect)是美国国际商业机器(IBM)公司的一套用于管理API生命周期的集成解决方案。该产品支持创建、运行、管理和保护API和微服务等。 IBM API Connect 10.0.8.0版本至10.0.8.5版本和10.0.11.0版本存在安全漏洞,该漏洞源于可绕过身份验证机制,可能导致未经授权的访问。
Description (English)
IBM API Connect is an integrated solution for the United States International Business Machine (IBM) to manage the API life cycle. It supports the creation, operation, management and protection of API and micro-services. There is a security loophole in IBM API Contact Versions 10.0.8.0 to 10.0.8.5 and 10.01.1.0, which stems from the possibility of circumventing the authentication mechanism and may lead to unauthorized access.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
国际商业机器
Published
2025-12-26
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7255149 https://access.redhat.com/security/cve/cve-2025-13915
Patch
https://www.ibm.com/support/pages/node/7255149
Share on: