wid-sec-w-2026-0710 · Published 2026-03-12 · View on BSI CERT-Bund ↗

IBM App Connect Enterprise: Vulnerability allows Cross-Site Scripting

CVSS 5.1 MEDIUM

Risk Summary

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM App Connect Enterprise ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen.

CVEs (1)

CVE-2026-3455

Affected Vendors

IBM

Affected Products (8)

IBM · App Connect Enterprise Operator CD <12.21.0

IBM · App Connect Enterprise Operator CD 12.21.0

IBM · App Connect Enterprise Operator LTS <12.0.21

IBM · App Connect Enterprise Operator LTS 12.0.21

IBM · App Connect Enterprise Certified Containers Operands CD <13.0.6.2-r1

IBM · App Connect Enterprise Certified Containers Operands CD 13.0.6.2-r1

IBM · App Connect Enterprise Certified Containers Operands LTS <12.0.12-r21

IBM · App Connect Enterprise Certified Containers Operands LTS 12.0.12-r21

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more