Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sterling b2b integrator 5.2 vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2017-1496
IBM Sterling B2B Integrator Standard Edition 5.2.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessi...
Ibm Sterling B2b Integrator 5.2.2
Ibm Sterling B2b Integrator 5.2.5
Ibm Sterling B2b Integrator 5.2
Ibm Sterling B2b Integrator 5.2.4
Ibm Sterling B2b Integrator 5.2.1
Ibm Sterling B2b Integrator 5.2.3
Ibm Sterling B2b Integrator 5.2.6
516
VMScore
CVE-2016-6020
IBM Sterling B2B Integrator Standard Edition could allow a remote malicious user to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed...
Ibm Sterling B2b Integrator 5.2.6
Ibm Sterling B2b Integrator 5.2.4.2
Ibm Sterling B2b Integrator 5.2.4.1
Ibm Sterling B2b Integrator 5.2
Ibm Sterling B2b Integrator 5.2.1
Ibm Sterling B2b Integrator 5.2.2
Ibm Sterling B2b Integrator 5.2.4
Ibm Sterling B2b Integrator 5.2.5
445
VMScore
CVE-2014-6099
The Change Password feature in IBM Sterling B2B Integrator 5.2.x up to and including 5.2.4 does not have a lockout protection mechanism for invalid login requests, which makes it easier for remote malicious users to obtain admin access via a brute-force approach.
Ibm Sterling B2b Integrator 5.2.4
Ibm Sterling B2b Integrator 5.2
445
VMScore
CVE-2016-0210
IBM Sterling B2B Integrator Standard Edition could allow a remote malicious user to obtain sensitive information. By allowing HTTP OPTIONS method, a remote attacker could send a specially-crafted query to a vulnerable server running to cause the server to disclose sensitive infor...
Ibm Sterling B2b Integrator 5.2
Ibm Sterling B2b Integrator 5.1
445
VMScore
CVE-2014-6199
The HTTP Server Adapter in IBM Sterling B2B Integrator 5.1 and 5.2.x and Sterling File Gateway 2.1 and 2.2 allows remote malicious users to cause a denial of service (connection-slot exhaustion) via a crafted HTTP request.
Ibm Sterling B2b Integrator 5.2.4
Ibm Sterling B2b Integrator 5.2.4.1
Ibm Sterling B2b Integrator 5.2.4.2
Ibm Sterling B2b Integrator 5.2.5.0
Ibm Sterling B2b Integrator 5.1
Ibm Sterling B2b Integrator 5.2
Ibm Sterling B2b Integrator 5.2.1
Ibm Sterling B2b Integrator 5.2.2
Ibm Sterling File Gateway 2.1
Ibm Sterling File Gateway 2.2
490
VMScore
CVE-2015-5019
IBM Sterling Integrator 5.1 prior to 5010004_8 and Sterling B2B Integrator 5.2 prior to 5020500_9 allow remote authenticated users to read or upload files by leveraging a password-change requirement.
Ibm Sterling B2b Integrator 5.2
Ibm Sterling Integrator 5.1
356
VMScore
CVE-2013-0456
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to hijack sessions via a modified cookie path.
Ibm Sterling B2b Integrator 5.2
Ibm Sterling B2b Integrator 5.1
Ibm Sterling File Gateway 2.1
Ibm Sterling File Gateway 2.2
356
VMScore
CVE-2013-0479
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 do not properly restrict file types and extensions, which allows remote authenticated users to bypass intended access restrictions via a crafted filename.
Ibm Sterling B2b Integrator 5.1
Ibm Sterling File Gateway 2.1
Ibm Sterling B2b Integrator 5.2
Ibm Sterling File Gateway 2.2
445
VMScore
CVE-2013-0539
An unspecified third-party component in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 uses short session ID values, which makes it easier for remote malicious users to hijack sessions, and consequently obtain sensitive information, via a brute-forc...
Ibm Sterling File Gateway 2.2
Ibm Sterling B2b Integrator 5.2
Ibm Sterling B2b Integrator 5.1
Ibm Sterling File Gateway 2.1
356
VMScore
CVE-2015-0194
XML External Entity (XXE) vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and IBM Sterling File Gateway 2.1 and 2.2 allows remote malicious users to read arbitrary files via a crafted XML data.
Ibm Sterling B2b Integrator 5.2
Ibm Sterling File Gateway 2.1
Ibm Sterling File Gateway 2.2
Ibm Sterling B2b Integrator 5.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »