B2b Advanced Communications@1.0.0.1 Security Vulnerabilities and Issues — B2b Advanced Communications@1.0.0.1 CVE List

Lucene search

IbmB2b Advanced Communications1.0.0.1

4 matches found

CVE•added 2015/10/06 1:59 a.m.•39 views

CVE-2015-4973

Cross-site scripting (XSS) vulnerability in IBM Multi-Enterprise Integration Gateway 1.x through 1.0.0.1 and B2B Advanced Communications 1.0.0.2 and 1.0.0.3 before 1.0.0.3_2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

4.3CVSS5.7AI score0.00236EPSS

CVE•added 2015/10/06 1:59 a.m.•38 views

CVE-2015-5022

IBM Multi-Enterprise Integration Gateway 1.x through 1.0.0.1 and B2B Advanced Communications 1.0.0.2 and 1.0.0.3 before 1.0.0.3_2, when access by guests is enabled, place an internal hostname and a payload path in a response, which allows remote authenticated users to obtain sensitive information b...

4.3CVSS5.7AI score0.00225EPSS

CVE•added 2016/01/01 5:59 a.m.•31 views

CVE-2015-7445

IBM Multi-Enterprise Integration Gateway 1.0 through 1.0.0.1 and B2B Advanced Communications 1.x before 1.0.0.4, when guest access is configured, allow remote authenticated users to obtain sensitive information by reading error messages in responses.

4.3CVSS4.1AI score0.00184EPSS

CVE•added 2016/05/15 1:59 a.m.•31 views

CVE-2016-0341

IBM Multi-Enterprise Integration Gateway 1.0 through 1.0.0.1 and B2B Advanced Communications 1.0.0.2 through 1.0.0.4 do not require HTTPS, which might allow remote attackers to obtain sensitive information by sniffing the network.

7.5CVSS7.2AI score0.00267EPSS