Server Side Request Forgery Vulnerability in IBM API Connect's Developer Portal 5.0.0.0 through 5.0.8.3

Server Side Request Forgery Vulnerability in IBM API Connect's Developer Portal 5.0.0.0 through 5.0.8.3

CVE-2018-1712 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

IBM API Connect's Developer Portal 5.0.0.0 through 5.0.8.3 is vulnerable to Server Side Request Forgery. An attacker, using specially crafted input parameters can trick the server into making potentially malicious calls within the trusted network. IBM X-Force ID: 146370.

Learn more about our Cis Benchmark Audit For Server Software.