Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm sterling b2b integrator 5.2 vulnerabilities and exploits

(subscribe to this query)
4
CVSSv2
CVE-2013-2985
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2987, CVE-2013-3020, CVE...
Ibm Sterling B2b Integrator 5.2Ibm Sterling File Gateway 2.2Ibm Sterling B2b Integrator 5.1Ibm Sterling File Gateway 2.1
4
CVSSv2
CVE-2013-2987
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2985, CVE-2013-3020, CVE...
Ibm Sterling File Gateway 2.1Ibm Sterling File Gateway 2.2Ibm Sterling B2b Integrator 5.2Ibm Sterling B2b Integrator 5.1
5
CVSSv2
CVE-2013-0539
An unspecified third-party component in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 uses short session ID values, which makes it easier for remote malicious users to hijack sessions, and consequently obtain sensitive information, via a brute-forc...
Ibm Sterling File Gateway 2.2Ibm Sterling B2b Integrator 5.2Ibm Sterling B2b Integrator 5.1Ibm Sterling File Gateway 2.1
4
CVSSv2
CVE-2013-0567
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2985, CVE-2013-2987, CVE...
Ibm Sterling B2b Integrator 5.2Ibm Sterling B2b Integrator 5.1Ibm Sterling File Gateway 2.1Ibm Sterling File Gateway 2.2
5
CVSSv2
CVE-2012-5936
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 do not set the secure flag for the session cookie in an https session, which makes it easier for remote malicious users to capture this cookie by intercepting its transmission within an http session.
Ibm Sterling File Gateway 2.2Ibm Sterling B2b Integrator 5.1Ibm Sterling File Gateway 2.1Ibm Sterling B2b Integrator 5.2
4
CVSSv2
CVE-2013-0456
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to hijack sessions via a modified cookie path.
Ibm Sterling B2b Integrator 5.2Ibm Sterling B2b Integrator 5.1Ibm Sterling File Gateway 2.1Ibm Sterling File Gateway 2.2
6.4
CVSSv2
CVE-2013-0476
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote malicious users to inject arbitrary FTP commands via unspecified vectors.
Ibm Sterling B2b Integrator 5.2Ibm Sterling B2b Integrator 5.1Ibm Sterling File Gateway 2.1Ibm Sterling File Gateway 2.2
4
CVSSv2
CVE-2013-0479
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 do not properly restrict file types and extensions, which allows remote authenticated users to bypass intended access restrictions via a crafted filename.
Ibm Sterling B2b Integrator 5.1Ibm Sterling File Gateway 2.1Ibm Sterling B2b Integrator 5.2Ibm Sterling File Gateway 2.2
6.5
CVSSv2
CVE-2013-0560
Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2012-5766.
Ibm Sterling B2b Integrator 5.2Ibm Sterling B2b Integrator 5.1Ibm Sterling File Gateway 2.1Ibm Sterling File Gateway 2.2
4
CVSSv2
CVE-2015-0194
XML External Entity (XXE) vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and IBM Sterling File Gateway 2.1 and 2.2 allows remote malicious users to read arbitrary files via a crafted XML data.
Ibm Sterling B2b Integrator 5.2Ibm Sterling File Gateway 2.1Ibm Sterling File Gateway 2.2Ibm Sterling B2b Integrator 5.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook