Security vulnerabilities: DoS attacks on IBM App Connect Enterprise possible
Security updates close several vulnerabilities in IBM App Connect Enterprise.
(Image: VideoFlow/Shutterstock.com)
IBM's business integration software App Connect Enterprise can be attacked in various ways. Attackers can manipulate data and paralyze processes, among other things. Protected versions are available.
Secure instances
In a warning message, IBM's developers list three vulnerabilities that have now been closed (CVE-2025-7783 "critical", CVE-2025-7338 "high", CVE-2025-7339 "low"). If attackers successfully exploit the critical vulnerability, they can manipulate HTTP parameters to access information that is actually protected, among other things. Exploitation of the vulnerability with a high threat level can trigger DoS states.
Videos by heise
There are still no reports of ongoing attacks. However, admins should not wait too long and install one of the repaired versions IBM App Connect Enterprise v13- Fix Pack Release 13.0.4.2 or IBM App Connect Enterprise v12- Fix Pack Release 12.0.12.17.
Important security updates for IBM QRadar SIEM have recently been released. In this case, access data can be leaked, among other things.
(des)
