8.8
CVE-2022-40231
- EPSS 0.3%
- Veröffentlicht 17.02.2023 19:15:11
- Zuletzt bearbeitet 21.11.2024 07:21:07
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
LoginIBM Sterling B2B Integrator Standard Edition improper access control
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.7 and 6.1.0.0 through 6.1.2.0 could allow an authenticated user to perform unauthorized actions due to improper access controls. IBM X-Force ID: 235533.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Sterling B2b Integrator SwEditionstandard Version >= 6.0.0.0 <= 6.0.3.7
Ibm ≫ Sterling B2b Integrator SwEditionstandard Version >= 6.1.0.0 <= 6.1.2.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.3% | 0.529 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| psirt@us.ibm.com | 4.3 | 2.8 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
|