Xxe

2017-08-1015:29:00

PRIOn knowledge base

www.prio-n.com

7.9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.3%

JSON

IBM Sterling B2B Integrator 5.2 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume memory resources. IBM X-Force ID: 123663.

CPENameOperatorVersion
sterling_b2b_integratoreq5.2

CPE	Name	Operator	Version
	sterling_b2b_integrator	eq	5.2

References

www.ibm.com/support/docview.wss?uid=swg22004267

www.securityfocus.com/bid/102864

exchange.xforce.ibmcloud.com/vulnerabilities/123663