IBM Sterling B2B Integrator Standard Edition could allow authenticated attacker to change another user’s password .
CVEID: CVE-2016-5890**
DESCRIPTION:** IBM Sterling B2B Integrator Standard Edition contains an unspecified vulnerability that would allow an authenticated attacker to change another user’s password.
CVSS Base Score: 5.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/115334> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N)
IBM Sterling B2B Integrator 5.2
Product & Version
|
APAR
|
Remediation/Fix
—|—|—
IBM Sterling B2B Integrator 5.2
| IT16043|
Apply Generic Interim Fix 5020500_14, 5020601_6, or 5020602_1 on Fix Central
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm sterling b2b integrator | eq | 5.2.6 | |
ibm sterling b2b integrator | eq | 5.2.5 | |
ibm sterling b2b integrator | eq | 5.2 |