[UPDATE] [high] IBM App Connect Enterprise Certified Container: Multiple vulnerabilities
An attacker can exploit multiple vulnerabilities in IBM App Connect Enterprise Certified Container to execute arbitrary code, bypass security measures, conduct Cross-Site Scripting attacks, manipulate data, disclose confidential information, or cause a Denial of Service condition.
CSIRTS triage
- What
- An attacker can exploit multiple vulnerabilities in IBM App Connect Enterprise Certified Container to execute arbitrary code, bypass security measures, conduct Cross-Site Scripting attacks, manipulate data, disclose confidential information, or cause a Denial of Service condition.
- Who is affected
- Deployments of IBM App Connect Enterprise Certified Container are affected.
- Urgency
- Remediation is high urgency due to the potential for arbitrary code execution and other severe impacts.
- Action
- Apply the latest security patches as soon as possible.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch App Connect Enterprise Certified Container
Get an email when a new App Connect Enterprise Certified Container advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1407
Exploitation outlook
EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.
- Low exploitation riskCVE-2026-260130.38% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 30% of all scored CVEs.
- Low exploitation riskCVE-2026-271420.33% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 25% of all scored CVEs.
- Moderate exploitation riskCVE-2026-282775.2% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 92% of all scored CVEs.
- Low exploitation riskCVE-2026-286840.24% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 14% of all scored CVEs.
- Low exploitation riskCVE-2026-322880.29% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 21% of all scored CVEs.
- Low exploitation riskCVE-2026-331510.51% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 40% of all scored CVEs.
- Low exploitation riskCVE-2026-333490.45% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 36% of all scored CVEs.
- Low exploitation riskCVE-2026-335320.47% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 37% of all scored CVEs.
- Low exploitation riskCVE-2026-338910.60% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 44% of all scored CVEs.
- Low exploitation riskCVE-2026-338940.34% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 26% of all scored CVEs.
Referenced CVEs
Same CVEs, other sources
How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.
- medium[UPDATE] [medium] Golang Go: Multiple vulnerabilitiescert-bund
- high[UPDATE] [high] Golang Go: Multiple vulnerabilities allow unspecified attackcert-bund
- high[UPDATE] [high] Golang Go: Multiple vulnerabilitiescert-bund
- medium[UPDATE] [medium] Red Hat OpenShift Container Platform (kubelet, cri-o, kube-apiserver): Vulnerability allows …cert-bund
- high[UPDATE] [high] Atlassian Bamboo, Bitbucket, Confluence, Fisheye, Crucible, Jira and Jira Service Management: …cert-bund
- high[UPDATE] [high] Kiali for Red Hat OpenShift Service Mesh (Axios, Go, Follow-redirects): Multiple vulnerabiliti…cert-bund
- unknownMultiple vulnerabilities in IBM products (July 3, 2026)cert-fr-avis
Recent advisories for IBM App Connect
A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.
More from CERT-Bund (BSI) Security Advisories
- medium[NEW] [medium] DENX U-Boot: Multiple vulnerabilities allow execution of arbitrary code and DoS2026-07-10
- medium[NEW] [medium] Samsung Android: Multiple vulnerabilities2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow unspecified attack2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10