CVE-2014-3036 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2014-3036

CWE

https://cwe.mitre.org/data/definitions/.html

Unspecified vulnerability in IBM API Management 3.0.0.0, when basic authentication is used for APIs, allows remote attackers to bypass intended restrictions on topology access, and obtain sensitive information, via unknown vectors.

Affected Software

Name	Vendor	Start Version	End Version
Api_management	Ibm	3.0.0.0 (including)	3.0.0.0 (including)

References

http://secunia.com/advisories/59044
http://www-01.ibm.com/support/docview.wss?uid=swg1LI78000
http://www-01.ibm.com/support/docview.wss?uid=swg21674232
http://www.securityfocus.com/bid/67941
https://exchange.xforce.ibmcloud.com/vulnerabilities/93302
http://secunia.com/advisories/59044
http://www-01.ibm.com/support/docview.wss?uid=swg1LI78000
http://www-01.ibm.com/support/docview.wss?uid=swg21674232
http://www.securityfocus.com/bid/67941
https://exchange.xforce.ibmcloud.com/vulnerabilities/93302