Denial of Service Vulnerability in IBM App Connect Enterprise Certified Container
CVE-2024-52362
4.3MEDIUM
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 12 March 2025
Summary
An input validation flaw in IBM App Connect Enterprise Certified Container versions ranging from 7.2 to 12.8 allows an authenticated user to potentially cause a denial of service in the App Connect flow. This vulnerability arises from inadequate validation of server-side input, which can disrupt services, impair application performance, and affect user experience. Organizations utilizing these versions should promptly address this issue to maintain system integrity and operational continuity.
Affected Version(s)
App Connect Enterprise Certified Container 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, 12.4, 12.5, 12.6, 12.7, 12.8
References
CVSS V3.1
Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved