CVE-2022-22371

🗓️ 05 Jan 2023 07:09:15Reported by [email protected]Type

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 does not invalidate session after a password change, allowing authenticated user to impersonate another use

Reporter	Title	Published	Views	Family All 5
CVE	CVE-2022-22371	5 Jan 202307:15	–	cve
CNVD	IBM Sterling B2B Integrator Session Fixation Vulnerability	11 Jan 202300:00	–	cnvd
Cvelist	CVE-2022-22371 IBM Sterling B2B Integrator Standard Edition session fixation	4 Jan 202317:31	–	cvelist
Prion	Session fixation	5 Jan 202307:15	–	prion
IBM Security Bulletins	Security Bulletin: Dashboard of IBM Sterling B2B Integrator is vulnerable to session mismanagment (CVE-2022-22371)	26 Mar 202503:26	–	ibm

Nvd

Node

ibm sterling_b2b_integratorRange6.0.0.0–6.0.3.6standard

ibm sterling_b2b_integratorRange6.1.0.0–6.1.0.5standard

ibm sterling_b2b_integratorRange6.1.1.0–6.1.1.1standard

ibm sterling_b2b_integratorMatch6.1.2.0standard

AND

ibm aixMatch-

linux linux_kernelMatch-

microsoft windowsMatch-

Source	Link
ibm	www.ibm.com/support/pages/node/6852461
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/221195

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Jan 2023 07:15Current

5.8Medium risk

Vulners AI Score5.8

CVSS36.5

EPSS0.00024

CWE-613