Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sterling b2b integrator vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-38928
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.1.2.1 uses Cross-Origin Resource Sharing (CORS) which could allow an malicious user to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only truste...
Ibm Sterling B2b Integrator
Ibm Sterling B2b Integrator 6.1.2.0
5.5
CVSSv2
CVE-2019-4043
IBM Sterling B2B Integrator Standard Edition 5.2.0 snf 6.0.0.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: ...
Ibm Sterling B2b Integrator 6.0.0.0
Ibm Sterling B2b Integrator
5
CVSSv2
CVE-2013-0494
IBM Sterling B2B Integrator 5.0 and 5.1 allows remote malicious users to cause a denial of service (memory and CPU consumption) via a crafted HTTP (1) Range or (2) Request-Range header.
Ibm Sterling B2b Integrator 5.0
Ibm Sterling B2b Integrator 5.1
5
CVSSv2
CVE-2014-6099
The Change Password feature in IBM Sterling B2B Integrator 5.2.x up to and including 5.2.4 does not have a lockout protection mechanism for invalid login requests, which makes it easier for remote malicious users to obtain admin access via a brute-force approach.
Ibm Sterling B2b Integrator 5.2.4
Ibm Sterling B2b Integrator 5.2
3.5
CVSSv2
CVE-2019-4074
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...
Ibm Sterling B2b Integrator 6.0.0.0
Ibm Sterling B2b Integrator 6.0.0.1
3.5
CVSSv2
CVE-2019-4076
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...
Ibm Sterling B2b Integrator 6.0.0.0
Ibm Sterling B2b Integrator 6.0.0.1
4
CVSSv2
CVE-2019-4222
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 could allow an authenticated user to view process definition of a business process without permission. IBM X-Force ID: 159231.
Ibm Sterling B2b Integrator 6.0.0.0
Ibm Sterling B2b Integrator 6.0.0.1
5
CVSSv2
CVE-2016-0210
IBM Sterling B2B Integrator Standard Edition could allow a remote malicious user to obtain sensitive information. By allowing HTTP OPTIONS method, a remote attacker could send a specially-crafted query to a vulnerable server running to cause the server to disclose sensitive infor...
Ibm Sterling B2b Integrator 5.2
Ibm Sterling B2b Integrator 5.1
3.5
CVSSv2
CVE-2019-4146
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 could allow an authenticated user to obtain sensitive document information under unusual circumstances. IBM X-Force ID: 158401.
Ibm Sterling B2b Integrator 6.0.0.0
Ibm Sterling B2b Integrator 6.0.0.1
3.5
CVSSv2
CVE-2019-4148
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...
Ibm Sterling B2b Integrator 6.0.0.0
Ibm Sterling B2b Integrator 6.0.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »