Information Leakage via API Swagger in IBM API Connect 2018.1 through 2018.4.1.6

Information Leakage via API Swagger in IBM API Connect 2018.1 through 2018.4.1.6

CVE-2019-4437 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

IBM API Connect 2018.1 through 2018.4.1.6 may inadvertently leak sensitive details about internal servers and network via API swagger. IBM X-force ID: 162947.

Learn more about our Cis Benchmark Audit For Server Software.