7.1
CVE-2026-1264
- EPSS 0.03%
- Veröffentlicht 17.03.2026 22:41:42
- Zuletzt bearbeitet 19.03.2026 14:20:18
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5_1, 6.2.1.0 through 6.2.1.1_1, and 6.2.2.0 allows a remote unauthenticated attacker to view and delete the partners of a community and to delete the communities.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
LoginDaten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Sterling B2b Integrator Version >= 6.1.0.0 < 6.1.2.8
Ibm ≫ Sterling B2b Integrator Version >= 6.2.0.0 < 6.2.0.5_2
Ibm ≫ Sterling B2b Integrator Version >= 6.2.1.0 < 6.2.1.1_2
Ibm ≫ Sterling B2b Integrator Version6.2.2.0
Ibm ≫ Sterling File Gateway Version >= 6.1.0.0 < 6.1.2.8
Ibm ≫ Sterling File Gateway Version >= 6.2.0.0 < 6.2.0.5_2
Ibm ≫ Sterling File Gateway Version >= 6.2.1.0 < 6.2.1.1_2
Ibm ≫ Sterling File Gateway Version6.2.2.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.03% | 0.081 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 3.9 | 2.5 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
|
| psirt@us.ibm.com | 7.1 | 2.8 | 4.2 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
|
CWE-306 Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.