15 matches found
EUVD-2022-46890
Malicious code in bioql PyPI...
CVE-2022-43920
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 could allow an authenticated user to gain privileges in a different group due to an access control vulnerability in the Sftp server adapter. IBM X-Force ID: 241362...
IBM Sterling B2B Integrator elevation of privilege vulnerability (CNVD-2023-05239)
IBM Sterling B2B Integrator is a suite of software from International Business Machines IBM that integrates critical B2B processes, transactions and relationships. The software supports secure integration of complex B2B processes with diverse partner communities. An elevation of privilege...
CVE-2022-43920
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 could allow an authenticated user to gain privileges in a different group due to an access control vulnerability in the Sftp server adapter. IBM X-Force ID: 241362...
Improper access control
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 could allow an authenticated user to gain privileges in a different group due to an access control vulnerability in the Sftp server adapter. IBM X-Force ID: 241362...
CVE-2022-43920 IBM Sterling B2B Integrator Standard Edition privilege escalation
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 could allow an authenticated user to gain privileges in a different group due to an access control vulnerability in the Sftp server adapter. IBM X-Force ID: 241362...
CVE-2022-43920 IBM Sterling B2B Integrator Standard Edition privilege escalation
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 could allow an authenticated user to gain privileges in a different group due to an access control vulnerability in the Sftp server adapter. IBM X-Force ID: 241362...
PT-2023-14400 · Ibm · Ibm Sterling B2B Integrator Standard Edition
Name of the Vulnerable Software and Affected Versions: IBM Sterling B2B Integrator Standard Edition versions 6.0.0.0 through 6.1.2.1 Description: The issue allows an authenticated user to gain privileges in a different group due to an access control vulnerability in the Sftp server adapter...
CVE-2014-6199
The HTTP Server Adapter in IBM Sterling B2B Integrator 5.1 and 5.2.x and Sterling File Gateway 2.1 and 2.2 allows remote attackers to cause a denial of service connection-slot exhaustion via a crafted HTTP request...
Design/Logic Flaw
The HTTP Server Adapter in IBM Sterling B2B Integrator 5.1 and 5.2.x and Sterling File Gateway 2.1 and 2.2 allows remote attackers to cause a denial of service connection-slot exhaustion via a crafted HTTP request...
CVE-2014-6199
The CVE affects IBM Sterling B2B Integrator and Sterling File Gateway: HTTP Server Adapter in IBM Sterling B2B Integrator 5.1/5.2.x and Sterling File Gateway 2.1/2.2 allows remote attackers to exhaust connection slots via a crafted HTTP request, causing a denial of service. This summary uses conc...
CVE-2014-6199
The HTTP Server Adapter in IBM Sterling B2B Integrator 5.1 and 5.2.x and Sterling File Gateway 2.1 and 2.2 allows remote attackers to cause a denial of service connection-slot exhaustion via a crafted HTTP request...
Fedora 19 : php-ZendFramework2-2.2.8-2.fc19 (2014-14043)
Security Fixes - ZF2014-05: Due to an issue that existed in PHP's LDAP extension, it is possible to perform an unauthenticated simple bind against a LDAP server by using a null byte for the password, regardless of whether or not the user normally requires a password. We have provided a patch in...
Information disclosure
IBM Sterling B2B Integrator 5.2.x through 5.2.4, when the Connect:Direct Server Adapter is configured, does not properly process the logging configuration, which allows local users to obtain sensitive information by reading log files...
CVE-2014-6146
IBM Sterling B2B Integrator 5.2.x–5.2.4 is affected when the Connect:Direct Server Adapter is configured. The vulnerability arises from improper processing of the logging configuration, enabling local users to read log files and obtain sensitive information. Affected component is the logging mech...