IBM7B9FB3FB480D1F6E03CFB3E0B3C5B74DBB500A9A7400641AD9C74368ED15E863Security Bulletin: Information Disclosure Security Vulnerability Affects IBM Sterling B2B Integrator (CVE-2019-4063)
0.001 Low
EPSS
Percentile
43.2%
Summary
IBM Sterling B2B Integrator Standard Edition has addressed the information disclosure vulnerability.
Vulnerability Details
CVEID: CVE-2019-4063 DESCRIPTION: IBM Sterling B2B Integrator Standard Edition could allow highly sensitive information to be transmitted in plain text. An attacker could obtain this information using man in the middle techniques.
CVSS Base Score: 5.9
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/157008> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
Affected Products and Versions
IBM Sterling B2B Integrator 5.2.0.1 - 6.0.0.0
Remediation/Fixes
PRODUCT & Version
| APAR |
Remediation/Fix
—|—|—
IBM Sterling B2B Integrator 5.2.0.1 - 6.0.0.0
| IT26305 |
Apply IBM Sterling B2B Integrator version 5.2.6.3_9 or 6.0.0.1 available on Fix Central
Workarounds and Mitigations
No
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm sterling b2b integrator | eq | 5.2.0.1 | |
| ibm sterling b2b integrator | eq | 6.0.0.0 |
Related
0.001 Low
EPSS
Percentile
43.2%