High severity7.5NVD Advisory· Published Dec 1, 2016· Updated Jun 17, 2026
CVE-2016-3012
CVE-2016-3012
Description
IBM API Connect (aka APIConnect) before 5.0.3.0 with NPM before 2.2.8 includes certain internal server credentials in the software package, which might allow remote attackers to bypass intended access restrictions by leveraging knowledge of these credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:ibm:api_connect:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ibm:api_connect:*:*:*:*:*:*:*:*range: <=5.0.2.0
- (no CPE)range: <5.0.3.0
Patches
Vulnerability mechanics
References
2- www-01.ibm.com/support/docview.wssnvdVendor Advisory
- www.securityfocus.com/bid/92417nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.