IBM Warns of Critical API Connect Bug Allowing Remote Authentication Bypass
IBM disclosed a critical CVSS 9.8 authentication bypass in IBM API Connect that could allow remote access; patches are now available.
More info