Sterling B2b Integrator Security Vulnerabilities and Issues — Sterling B2b Integrator CVE List

Lucene search

IbmSterling B2b Integrator

9 matches found

CVE•added 2018/07/20 4:29 p.m.•59 views

CVE-2018-1563

IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 through 2.2.6) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure...

5.4CVSS5.1AI score0.02417EPSS

CVE•added 2018/07/23 1:29 p.m.•49 views

CVE-2018-1513

IBM Sterling B2B Integrator Standard Edition 5.2.0 through 5.2.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. I...

5.4CVSS5.1AI score0.02716EPSS

CVE•added 2018/04/20 9:29 p.m.•41 views

CVE-2014-0912

IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote attackers to obtain sensitive product information via vectors related to an error page. IBM X-Force ID: 92072.

5.3CVSS5.5AI score0.00172EPSS

CVE•added 2018/07/20 4:29 p.m.•40 views

CVE-2018-1564

IBM Sterling B2B Integrator Standard Edition 5.2 through 5.2.6 could allow a local user with administrator privileges to obtain user passwords found in debugging messages. IBM X-Force ID: 142968.

6.7CVSS6.1AI score0.00046EPSS

CVE•added 2018/07/31 1:29 p.m.•36 views

CVE-2018-1718

IBM Sterling B2B Integrator Standard Edition 5.2.0.1 - 5.2.6.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...

5.4CVSS5.2AI score0.00214EPSS

CVE•added 2018/07/20 4:29 p.m.•35 views

CVE-2017-1633

IBM Sterling B2B Integrator 5.2 through 5.2.6 could allow an authenticated attacker to obtain sensitive variable name information using specially crafted HTTP requests. IBM X-Force ID: 133180.

4.3CVSS4.6AI score0.00264EPSS

CVE•added 2018/07/20 4:29 p.m.•35 views

CVE-2018-1679

IBM Sterling B2B Integrator Standard Edition 5.2 through 5.2.6 could allow an unauthenticated user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 145180.

5.3CVSS5.2AI score0.00191EPSS

CVE•added 2018/04/20 9:29 p.m.•33 views

CVE-2014-0927

The ActiveMQ admin user interface in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote attackers to bypass authentication by leveraging knowledge of the port number and webapp path. IBM X-Force ID: 92259.

8.1CVSS7.9AI score0.00363EPSS

CVE•added 2018/09/20 3:29 p.m.•29 views

CVE-2018-1800

IBM Sterling B2B Integrator Standard Edition 5.2.6.0 and 6.2.6.1 could allow a local user to obtain highly sensitive information during a short time period when installation is occurring. IBM X-Force ID: 149607.

5.1CVSS4.3AI score0.00046EPSS