Unrated severityNVD Advisory· Published May 11, 2024· Updated Mar 13, 2025
IBM App Connect Enterprise HTML injection
CVE-2024-28761
Description
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 285245.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=11.0.0.1 <=11.0.0.25, >=12.0.1.0 <=12.0.12.0+ 1 more
- (no CPE)range: >=11.0.0.1 <=11.0.0.25, >=12.0.1.0 <=12.0.12.0
- (no CPE)range: 11.0.0.1
Patches
Vulnerability mechanics
References
2- www.ibm.com/support/pages/node/7150847mitrevendor-advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/285245mitrevdb-entry
News mentions
0No linked articles in our index yet.