Ibm

Sterling B2b Integrator

198 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2026-1264

  • EPSS 0.02%
  • Veröffentlicht 17.03.2026 22:41:42
  • Zuletzt bearbeitet 19.03.2026 14:20:18

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5_1, 6.2.1.0 through 6.2.1.1_1, and 6.2.2.0 allows a remote unauthenticated attacker to view and delete the partners of a community and to dele...

7.5

CVE-2025-14031

  • EPSS 0.07%
  • Veröffentlicht 17.03.2026 22:41:41
  • Zuletzt bearbeitet 19.03.2026 14:20:15

IBM Sterling B2B Integrator and and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5_1, 6.2.1.0 through 6.2.1.1_1, and 6.2.2.0 could allow an unauthenticated attacker to send a specially crafted request that causes the app...

7.2

CVE-2025-36368

  • EPSS 0.03%
  • Veröffentlicht 13.03.2026 19:53:50
  • Zuletzt bearbeitet 20.03.2026 14:49:15

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5_1, and 6.2.1.0 through 6.2.1.1_1 are vulnerable to SQL injection. An administrative user could send specially crafted SQL statements, which c...

5.4

CVE-2023-40693

  • EPSS 0.03%
  • Veröffentlicht 13.03.2026 19:25:02
  • Zuletzt bearbeitet 20.03.2026 14:47:49

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.7_2, and 6.2.0.0 through 6.2.0.5_1, 6.2.1.0 through 6.2.1.1_1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code i...

6.5

CVE-2025-14483

  • EPSS 0.03%
  • Veröffentlicht 13.03.2026 19:15:11
  • Zuletzt bearbeitet 20.03.2026 19:19:14

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5_1, 6.2.1.0 through 6.2.1.1_1, and 6.2.2.0 could disclose sensitive host information to authenticated users in responses that could be used in...

5.4

CVE-2025-14504

  • EPSS 0.03%
  • Veröffentlicht 13.03.2026 19:08:37
  • Zuletzt bearbeitet 20.03.2026 19:19:02

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5_1, 6.2.1.0 through 6.2.1.1_1, and 6.2.2.0 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arb...

5.4

CVE-2026-0835

  • EPSS 0.03%
  • Veröffentlicht 13.03.2026 18:57:35
  • Zuletzt bearbeitet 20.03.2026 19:18:53

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5_1, 6.2.1.0 through 6.2.1.1_1, and 6.2.2.0 are vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed ar...

4.9

CVE-2025-36348

  • EPSS 0.05%
  • Veröffentlicht 17.02.2026 21:31:30
  • Zuletzt bearbeitet 20.02.2026 16:54:03

IBM Sterling B2B Integrator versions 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5, and 6.2.1.0 through 6.2.1.1, and IBM Sterling File Gateway versions 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5, and 6.2.1.0 through 6.2.1.1 may expose se...

6.1

CVE-2025-36066

  • EPSS 0.08%
  • Veröffentlicht 20.01.2026 15:14:03
  • Zuletzt bearbeitet 03.02.2026 21:57:24

IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus alteri...

6.5

CVE-2025-36065

  • EPSS 0.03%
  • Veröffentlicht 20.01.2026 15:12:47
  • Zuletzt bearbeitet 03.02.2026 21:57:55

IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 does not invalidate session after a browser closure which could allow an authenticated user to impersonate another user on the system.