IBM API Connect (aka APIConnect) before 5.0.3.0 with NPM before 2.2.8 includes certain internal server credentials in the software package, which might allow remote attackers to bypass intended access restrictions by leveraging knowledge of these credentials.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2016-12-01T11:00:00

Updated: 2024-08-05T23:40:15.183Z

Reserved: 2016-03-09T00:00:00

Link: CVE-2016-3012

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2016-12-01T11:59:04.713

Modified: 2016-12-01T18:50:20.580

Link: CVE-2016-3012

cve-icon Redhat

No data.