heise PlusAbo

Malware flaw threatens IBM App Connect Enterprise and IBM Integration Bus

Attackers can target IBM App Connect Enterprise and IBM Integration Bus for z/OS. Updates resolve the security issue.

listen Print view
A symbolic update bar fills up.

(Image: AFANASEV IVAN/Shutterstock.com)

1 min. read
Security
By

The integration software for business information, among others, IBM App Connect Enterprise and IBM Integration Bus for z/OS, is vulnerable via a software vulnerability. Malware can compromise systems.

Malware Security Vulnerability

The developers warn of this in a post. In the course of a directory traversal attack (CVE-2026-67030 “high”), attackers can access otherwise isolated data and directories to download and execute malware. So far, there are no reports that attackers are already exploiting the security vulnerability.

Videos by heise

The developers state that the following versions are affected: IBM App Connect Enterprise 12.0.1.0 to 12.0.12.24 and 13.0.1.0 to 13.0.7.0, and IBM Integration Bus for z/OS 0.1.0.0 to 10.1.0.6. The vulnerabilities have been fixed in the following releases:

  • IBM App Connect Enterprise v12 - Fix Pack Release 12.0.12.25
  • IBM App Connect Enterprise v13 - Fix Pack Release 13.0.7.1
  • IBM Integration Bus for z/OS v10.1 - Fix Pack Release 10.1.0.7

(des)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten