wid-sec-w-2026-1833 · Published 2026-06-15 · View on BSI CERT-Bund ↗

IBM App Connect Enterprise (basic-ftp, xmldom): Multiple Vulnerabilities

CVSS N/A NONE

Risk Summary

Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM App Connect Enterprise ausnutzen, um Dateien zu manipulieren oder einen Denial-of-Service-Zustand zu verursachen.

CVEs (6)

CVE-2026-39983 CVE-2026-41324 CVE-2026-41672 CVE-2026-41673 CVE-2026-41674 CVE-2026-41675

Affected Vendors

HCL IBM

Affected Products (7)

HCL · BigFix WebUI Applications

IBM · App Connect Enterprise <13.0.7.2

IBM · App Connect Enterprise 13.0.7.2

IBM · App Connect Enterprise <12.0.12.26

IBM · App Connect Enterprise 12.0.12.26

IBM · App Connect Enterprise <13.0.7.1

IBM · App Connect Enterprise 13.0.7.1

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more