CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-3602

mediumCVSS 4.7covered by 1 sourcefirst seen 2026-06-30
IBM App Connect Enterprise 13.0.1.0 through 13.0.7.2, and 12.0.1.0 through 12.0.12.26 and IBM Integration Bus for z/OS 10.1.0.0 through 10.1.0.7 is vulnerable to SQL injection. A remote attacker could socially engineer a user into accidentally creating files they may not be aware of.

⚡ Watch CVE-2026-3602

Get an email if CVE-2026-3602 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-3602

CVE.org record

Embed the live status

CVE-2026-3602 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-3602 status](https://www.csirts.com/badge/CVE-2026-3602)](https://www.csirts.com/cve/CVE-2026-3602)