CNNVD-202602-853 Information

CNNVD ID

CNNVD-202602-853

Related CVE

CVE-2025-13491

• CNNVD Published: 2026-02-05

Description (Chinese)

IBM App Connect Enterprise Certified Container是美国国际商业机器（IBM）公司的一个基于 IBM App Connect Enterprise 软件产品的映像。以可执行文件的形式提供软件包，可以在容器化环境中部署和运行。 IBM App Connect Enterprise Certified Container 12.19.0及之前版本和12.0 LTS版本存在代码问题漏洞，该漏洞源于不可信的搜索路径，可能导致访问敏感文件或修改配置。

Description (English)

IBM App Connect Enterprise Certified Container is an image based on IBM App Connect Enterprise software products of the United States International Business Machine (IBM). Software packages are available in the form of implementable documents and can be deployed and operated in a containerized environment. The IBM App Construction Enterprise Contact 12.19.0 and previous and 12.0 LTS versions have code gaps that stem from untrustworthy search paths that may lead to access to sensitive documents or modification of configurations.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

国际商业机器

Published

2026-02-05

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7259746

Patch

https://www.ibm.com/support/pages/node/7259746