DoS attacks can paralyze IBM App Connect Enterprise
Important security updates have been released for IBM App Connect Enterprise and App Connect Enterprise Certified Container.
(Image: Alfa Photo/Shutterstock.com)
Multiple vulnerabilities endanger systems with IBM's business integration software, App Connect Enterprise and App Connect Enterprise Certified Container. Admins should update the software promptly.
Install Security Patches
According to a warning, App Connect Enterprise can be attacked through three security vulnerabilities (CVE-2025-57350 "high" CVE-2025-56200 "medium" CVE-2025-64118 "medium"). Attackers can trick victims into opening a CSV file prepared with malicious code. Processing this then leads to errors that trigger a DoS state. The releases IBM App Connect Enterprise v12- Fix Pack Release 12.0.12.20 and IBM App Connect Enterprise v13- Fix Pack Release 13.0.5.2 are said to be equipped to counter this.
App Connect Enterprise Certified Container is also vulnerable through the three flaws. Releases 12.0.18 (LTS) and 12.18.0 (Continuous Delivery) provide a remedy here.
Videos by heise
Most recently, IBM closed security vulnerabilities in the AIX operating system.
(des)
