CVE-2026-5515
EUVD-2026-3246127.05.2026, 14:17
IBM App Connect Enterprise 13.0.1.0 through 13.0.7.0 stores potentially sensitive information in log files that could be read by a local user.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| ibm | app_connect_enterprise | 13.0.1.0 ≤ 𝑥 < 13.0.7.1 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| ibm | connect\ | 13.0.1.0 ≤ 𝑥 ≤ 13.0.7.0 | CNA |
Common Weakness Enumeration
- CWE-922 - Insecure Storage of Sensitive InformationThe software stores sensitive information without properly limiting read or write access by unauthorized actors.
- CWE-532 - Insertion of Sensitive Information into Log FileInformation written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.