VYPR
Unrated severityNVD Advisory· Published May 11, 2024· Updated Mar 13, 2025

IBM App Connect Enterprise HTML injection

CVE-2024-28761

Description

IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 285245.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • IBM/App Connect Enterprisellm-fuzzy2 versions
    >=11.0.0.1 <=11.0.0.25, >=12.0.1.0 <=12.0.12.0+ 1 more
    • (no CPE)range: >=11.0.0.1 <=11.0.0.25, >=12.0.1.0 <=12.0.12.0
    • (no CPE)range: 11.0.0.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.