Lucene search
K

4 matches found

OSV
OSV
added 2023/01/05 7:15 a.m.6 views

CVE-2022-22371

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 does not invalidate session after a password change which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 221195...

6.5CVSS5.8AI score0.00328EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/01/04 5:31 p.m.23 views

CVE-2022-22371 IBM Sterling B2B Integrator Standard Edition session fixation

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 does not invalidate session after a password change which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 221195...

5.5CVSS6.3AI score0.00328EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/01/04 5:31 p.m.8 views

CVE-2022-22371 IBM Sterling B2B Integrator Standard Edition session fixation

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 does not invalidate session after a password change which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 221195...

5.5CVSS5.3AI score0.00328EPSS
Exploits0References2
CVE
CVE
added 2023/01/04 5:31 p.m.69 views

CVE-2022-22371

Summary (CVE-2022-22371) IBM Sterling B2B Integrator Standard Edition (versions 6.0.0.0–6.1.2.1) does not invalidate a session after a password change, enabling an authenticated user to impersonate another user. The IBM advisory confirms the vulnerability details and lists affected versions, with...

6.5CVSS5.8AI score0.00328EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder