4 matches found
CVE-2022-22371
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 does not invalidate session after a password change which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 221195...
CVE-2022-22371 IBM Sterling B2B Integrator Standard Edition session fixation
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 does not invalidate session after a password change which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 221195...
CVE-2022-22371 IBM Sterling B2B Integrator Standard Edition session fixation
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 does not invalidate session after a password change which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 221195...
CVE-2022-22371
Summary (CVE-2022-22371) IBM Sterling B2B Integrator Standard Edition (versions 6.0.0.0–6.1.2.1) does not invalidate a session after a password change, enabling an authenticated user to impersonate another user. The IBM advisory confirms the vulnerability details and lists affected versions, with...