Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sterling b2b integrator vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-29758
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 up to and including 6.1.1.0 could allow an authenticated user to perform actions that they should not be able to access due to improper access controls. IBM X-Force ID: 202169.
Ibm Sterling B2b Integrator
5.4
CVSSv3
CVE-2021-29764
IBM Sterling B2B Integrator 5.2.0.0 up to and including 6.1.1.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure wi...
Ibm Sterling B2b Integrator
9.8
CVSSv3
CVE-2021-29903
IBM Sterling B2B Integrator Standard Edition 5.2.6.0 up to and including 6.1.1.0 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database...
Ibm Sterling B2b Integrator
5.4
CVSSv3
CVE-2021-29836
IBM Sterling B2B Integrator Standard Edition 5.2.0.0. up to and including 6.1.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials di...
Ibm Sterling B2b Integrator
5.4
CVSSv3
CVE-2021-29855
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 up to and including 6.1.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials dis...
Ibm Sterling B2b Integrator
1 Article
4.3
CVSSv3
CVE-2023-42016
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.0.3.8 and 6.1.0.0 up to and including 6.1.2.3 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a use...
Ibm Sterling B2b Integrator
4.3
CVSSv3
CVE-2021-20372
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow a remote authenticated user to cause a denial of another user's service due to insufficient permission checking. IBM X-Force ID: 195518.
Ibm Sterling B2b Integrator
6.5
CVSSv3
CVE-2021-20375
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow an authenticated user to intercept and replace a message sent by another user due to improper access controls. IBM X-Force ID: 195567.
Ibm Sterling B2b Integrator
4.3
CVSSv3
CVE-2021-20376
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow an authenticated malicious user to enumerate usernames due to there being an observable discrepancy in returned messages. IBM X-Force ID: 195568.
Ibm Sterling B2b Integrator
7.5
CVSSv3
CVE-2021-20584
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow a remote malicious user to upload arbitrary files, caused by improper access controls. IBM X-Force ID: 199397.
Ibm Sterling B2b Integrator
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »