Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm sterling b2b integrator 5.2.4 vulnerabilities and exploits

(subscribe to this query)
1.9
CVSSv2
CVE-2014-6146
IBM Sterling B2B Integrator 5.2.x up to and including 5.2.4, when the Connect:Direct Server Adapter is configured, does not properly process the logging configuration, which allows local users to obtain sensitive information by reading log files.
Ibm Sterling B2b Integrator 5.2.1Ibm Sterling B2b Integrator 5.2.4Ibm Sterling B2b Integrator 5.2.2
3.5
CVSSv2
CVE-2017-1496
IBM Sterling B2B Integrator Standard Edition 5.2.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessi...
Ibm Sterling B2b Integrator 5.2.2Ibm Sterling B2b Integrator 5.2.5Ibm Sterling B2b Integrator 5.2Ibm Sterling B2b Integrator 5.2.4Ibm Sterling B2b Integrator 5.2.1Ibm Sterling B2b Integrator 5.2.3Ibm Sterling B2b Integrator 5.2.6
5.8
CVSSv2
CVE-2016-6020
IBM Sterling B2B Integrator Standard Edition could allow a remote malicious user to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed...
Ibm Sterling B2b Integrator 5.2.6Ibm Sterling B2b Integrator 5.2.4.2Ibm Sterling B2b Integrator 5.2.4.1Ibm Sterling B2b Integrator 5.2Ibm Sterling B2b Integrator 5.2.1Ibm Sterling B2b Integrator 5.2.2Ibm Sterling B2b Integrator 5.2.4Ibm Sterling B2b Integrator 5.2.5
5
CVSSv2
CVE-2014-6099
The Change Password feature in IBM Sterling B2B Integrator 5.2.x up to and including 5.2.4 does not have a lockout protection mechanism for invalid login requests, which makes it easier for remote malicious users to obtain admin access via a brute-force approach.
Ibm Sterling B2b Integrator 5.2.4Ibm Sterling B2b Integrator 5.2
5
CVSSv2
CVE-2014-6199
The HTTP Server Adapter in IBM Sterling B2B Integrator 5.1 and 5.2.x and Sterling File Gateway 2.1 and 2.2 allows remote malicious users to cause a denial of service (connection-slot exhaustion) via a crafted HTTP request.
Ibm Sterling B2b Integrator 5.2.4Ibm Sterling B2b Integrator 5.2.4.1Ibm Sterling B2b Integrator 5.2.4.2Ibm Sterling B2b Integrator 5.2.5.0Ibm Sterling B2b Integrator 5.1Ibm Sterling B2b Integrator 5.2Ibm Sterling B2b Integrator 5.2.1Ibm Sterling B2b Integrator 5.2.2Ibm Sterling File Gateway 2.1Ibm Sterling File Gateway 2.2
4.3
CVSSv2
CVE-2013-0455
Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling B2B Integrator 5.2.4 and Sterling File Gateway allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Sterling B2b Integrator 5.2.4Ibm Sterling File Gateway -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook