Unspecified Vulnerability in IBM API Management Product Exposing Sensitive Information
CVE-2014-3036

Currently unrated

Key Information:

Vendor: IBM
Status: Api Management
Vendor: CVE Published:; 8 June 2014

What is CVE-2014-3036?

An unspecified vulnerability in IBM API Management version 3.0.0.0 can be exploited when basic authentication is implemented for APIs. This allows remote attackers to circumvent intended topology access restrictions, potentially gaining exposure to sensitive information through unknown attack vectors.

References

http://www.securityfocus.com/bid/67941

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/93302

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21674232

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 8, 2014
Vulnerability Reserved
Apr 29, 2014