Lucene search
HistoryJun 27, 2024 - 6:15 p.m.
CVE-2023-42011
ibm
sterling b2b
integrator
security issue
ui
x-force id
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0
Percentile
13.7%
IBM Sterling B2B Integrator Standard Edition 6.1 and 6.2 does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain, which can lead to user confusion about which interface the user is interacting with. IBM X-Force ID: 265508.
Affected configurations
Node
ibmsterling_b2b_integratorMatch6.1standard
ORibmsterling_b2b_integratorMatch6.2standard
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | sterling_b2b_integrator | 6.1 | cpe:2.3:a:ibm:sterling_b2b_integrator:6.1:*:*:*:standard:*:*:* |
| ibm | sterling_b2b_integrator | 6.2 | cpe:2.3:a:ibm:sterling_b2b_integrator:6.2:*:*:*:standard:*:*:* |
Related
cve
cve
CVE-2023-42011
2024-06-27 18:15:13
cvelist
cvelist
CVE-2023-42011 IBM Sterling B2B Integrator Standard Edition tapjacking
2024-06-27 17:39:04
ibm
ibm
vulnrichment
vulnrichment
CVE-2023-42011 IBM Sterling B2B Integrator Standard Edition tapjacking
2024-06-27 17:39:04
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0
Percentile
13.7%
Related for NVD:CVE-2023-42011