Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sterling b2b integrator - vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2022-22482
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.0.3.5 and 6.1.0.0 up to and including 6.1.1.0 could allow an authenticated user to upload files that could fill up the filesystem and cause a denial of service. IBM X-Force ID: 225977.
Ibm Sterling B2b Integrator
6.5
CVSSv2
CVE-2020-4655
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.0.3.2 and 5.2.0.0 up to and including 5.2.6.5 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or del...
Ibm Sterling B2b Integrator
4
CVSSv2
CVE-2021-29700
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 up to and including 6.1.1.0 could allow an authneticated malicious user to obtain sensitive information from configuration files that could aid in further attacks against the system. IBM X-Force ID: 200656.
Ibm Sterling B2b Integrator
4
CVSSv2
CVE-2021-29761
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 up to and including 6.1.1.0 could allow an authenticated user to obtain sensitive information from the dashboard that they should not have access to. IBM X-Force ID: 202265.
Ibm Sterling B2b Integrator
6.5
CVSSv2
CVE-2019-4387
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.0.2.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database...
Ibm Sterling B2b Integrator
3.5
CVSSv2
CVE-2021-29764
IBM Sterling B2B Integrator 5.2.0.0 up to and including 6.1.1.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure wi...
Ibm Sterling B2b Integrator
2.1
CVSSv2
CVE-2018-1564
IBM Sterling B2B Integrator Standard Edition 5.2 up to and including 5.2.6 could allow a local user with administrator privileges to obtain user passwords found in debugging messages. IBM X-Force ID: 142968.
Ibm Sterling B2b Integrator
NA
CVE-2023-42016
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.0.3.8 and 6.1.0.0 up to and including 6.1.2.3 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a use...
Ibm Sterling B2b Integrator
5.8
CVSSv2
CVE-2019-4595
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 up to and including 5.2.6.5 could allow a remote malicious user to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vuln...
Ibm Sterling B2b Integrator
6.5
CVSSv2
CVE-2019-4597
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 up to and including 5.2.6.5 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database...
Ibm Sterling B2b Integrator
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »