Ibm

Sterling B2b Integrator

183 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2020-4312

  • EPSS 0.16%
  • Veröffentlicht 13.05.2020 13:15:14
  • Zuletzt bearbeitet 21.11.2024 05:32:34

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 trough 6.0.3.1 could allow an authenticated user to obtain sensitive information from a cached web page. IBM X-Force ID: 177089.

5.4

CVE-2019-4596

  • EPSS 0.24%
  • Veröffentlicht 26.02.2020 16:15:19
  • Zuletzt bearbeitet 21.11.2024 04:43:48

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading ...

6.5

CVE-2019-4597

  • EPSS 0.3%
  • Veröffentlicht 26.02.2020 16:15:19
  • Zuletzt bearbeitet 21.11.2024 04:43:48

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-...

6.5

CVE-2019-4598

  • EPSS 0.3%
  • Veröffentlicht 26.02.2020 16:15:19
  • Zuletzt bearbeitet 21.11.2024 04:43:49

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-...

4.3

CVE-2019-4726

  • EPSS 0.13%
  • Veröffentlicht 26.02.2020 16:15:19
  • Zuletzt bearbeitet 21.11.2024 04:44:03

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ...

6.1

CVE-2019-4595

  • EPSS 0.19%
  • Veröffentlicht 24.02.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 04:43:47

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could explo...

8.8

CVE-2019-4387

  • EPSS 0.34%
  • Veröffentlicht 26.11.2019 16:15:13
  • Zuletzt bearbeitet 21.11.2024 04:43:32

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.2.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-...

4.3

CVE-2019-4377

  • EPSS 0.22%
  • Veröffentlicht 25.06.2019 16:15:10
  • Zuletzt bearbeitet 21.11.2024 04:43:30

IBM Sterling B2B Integrator 6.0.0.0 and 6.0.0.1 reveals sensitive information from a stack trace that could be used in further attacks against the system. IBM X-Force ID: 162803.

5.4

CVE-2019-4258

  • EPSS 0.23%
  • Veröffentlicht 01.05.2019 16:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:23

IBM Sterling B2B Integrator 6.0.0.0 and 6.0.0.1 Standard Edition is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to c...

3.5

CVE-2019-4146

  • EPSS 0.23%
  • Veröffentlicht 25.04.2019 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:14

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 could allow an authenticated user to obtain sensitive document information under unusual circumstances. IBM X-Force ID: 158401.