The Hacker News

Critical CVSS 9.8 Flaw Found in IBM API Connect Authentication System

IBM disclosed a critical CVSS 9.8 authentication bypass in IBM API Connect that could allow remote access; patches are now ...
InfoWorld

Critical vulnerability in IBM API Connect could allow authentication bypass

Rated 9.8 out of 10 in severity, the flaw could allow a remote attacker to gain unauthorized access to applications.

IBM warns of critical API Connect auth bypass vulnerability

IBM urged customers to patch a critical authentication bypass vulnerability in its API Connect enterprise platform that could ...
Bleeping Computer

Cloudflare now blocks all unencrypted traffic to its API endpoints

Cloudflare announced that it closed all HTTP connections and it is now accepting only secure, HTTPS connections for api.cloudflare.com. The move prevents unencrypted API requests from being sent, even ...
Dark Reading

Low-Code Tools in Microsoft Azure Allowed Unprivileged Access

Applications connected to Azure through its API Connections functionality could have leaked data to unauthenticated or low-privileged users prior to Microsoft fixing the issue earlier this year, ...