Ibm

Sterling B2b Integrator

187 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2019-4387

  • EPSS 0.34%
  • Veröffentlicht 26.11.2019 16:15:13
  • Zuletzt bearbeitet 21.11.2024 04:43:32

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.2.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-...

4.3

CVE-2019-4377

  • EPSS 0.22%
  • Veröffentlicht 25.06.2019 16:15:10
  • Zuletzt bearbeitet 21.11.2024 04:43:30

IBM Sterling B2B Integrator 6.0.0.0 and 6.0.0.1 reveals sensitive information from a stack trace that could be used in further attacks against the system. IBM X-Force ID: 162803.

5.4

CVE-2019-4258

  • EPSS 0.23%
  • Veröffentlicht 01.05.2019 16:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:23

IBM Sterling B2B Integrator 6.0.0.0 and 6.0.0.1 Standard Edition is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to c...

3.5

CVE-2019-4146

  • EPSS 0.23%
  • Veröffentlicht 25.04.2019 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:14

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 could allow an authenticated user to obtain sensitive document information under unusual circumstances. IBM X-Force ID: 158401.

5.4

CVE-2019-4148

  • EPSS 0.16%
  • Veröffentlicht 25.04.2019 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:14

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to c...

4.3

CVE-2019-4222

  • EPSS 0.13%
  • Veröffentlicht 25.04.2019 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:20

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 could allow an authenticated user to view process definition of a business process without permission. IBM X-Force ID: 159231.

7.5

CVE-2018-1720

  • EPSS 0.1%
  • Veröffentlicht 25.04.2019 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:00:15

IBM Sterling B2B Integrator Standard Edition 5.2.0.1, 5.2.6.3_6, 6.0.0.0, and 6.0.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 147294.

5.4

CVE-2019-4073

  • EPSS 0.17%
  • Veröffentlicht 25.04.2019 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:43:07

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to c...

5.4

CVE-2019-4074

  • EPSS 0.16%
  • Veröffentlicht 25.04.2019 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:43:07

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to c...

5.4

CVE-2019-4075

  • EPSS 0.17%
  • Veröffentlicht 25.04.2019 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:43:07

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to c...