Beware of Authentication Bypass Vulnerability in IBM App Connect

CVECVE-2024-22317
CVSScvssV3_1: 9.1
SourceCVE-2024-22317

IBM App Connect is an integration platform that allows organizations to connect different applications and services together. According to security researchers, versions 11.0.0.1 through 11.0.0.24 and 12.0.1.0 through 12.0.11.0 of IBM App Connect are vulnerable to an authentication bypass issue.

Attackers can exploit this vulnerability to obtain sensitive user information or cause denial of service by repeatedly attempting authentication. They do not actually need valid credentials to do so as the product fails to restrict excessive authentication attempts.

This happens because the authentication mechanism in IBM App Connect does not implement proper rate limiting of login attempts. As a result, brute force attacks or automated login attempts can overwhelm the system. Attackers can potentially lock out legitimate users or harvest credentials by brute forcing common passwords.

The best way to protect yourself is to always keep your IBM App Connect installation up-to-date with the latest patches. IBM has released fixes for this issue in newer versions so make sure to update immediately. You should also use strong and unique passwords for added security. Monitor your logs for any suspicious activity and block suspect IP addresses proactively.

References