Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMD1616A167589D66A2E9087A7BA6ECA366B52619D80145AAF2E3A4BA722F32B54
HistoryFeb 05, 2020 - 12:53 a.m.

Security Bulletin: Permission Control Security Vulnerability Affects IBM Sterling B2B Integrator (CVE-2019-4042)

2020-02-0500:53:36
www.ibm.com
8
JSON

Summary

IBM Sterling B2B Integrator Standard Edition has addressed the permission control vulnerability.

Vulnerability Details

CVEID: CVE-2019-4042 DESCRIPTION: IBM Sterling B2B Integrator could allow a user without permission to access EBICS configuration to use its own secure token to access the configuration.
CVSS Base Score: 6.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/156238&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N)

Affected Products and Versions

IBM Sterling B2B Integrator 5.2.0.1 - 6.0.0.0

Remediation/Fixes

PRODUCT & Version

| APAR |

Remediation/Fix

—|—|—

IBM Sterling B2B Integrator 5.2.0.1 - 6.0.0.0

| IT27906 |

Apply IBM Sterling B2B Integrator version 5.2.6.3_9 or 6.0.0.1 available on Fix Central

Workarounds and Mitigations

No

Related

cve 1
cve
cve
CVE-2019-4042
2022-02-25 23:39:07
JSON
Related for D1616A167589D66A2E9087A7BA6ECA366B52619D80145AAF2E3A4BA722F32B54
cve1