Ibm

Sterling B2b Integrator

183 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2024-27263

  • EPSS 0.03%
  • Published 28.01.2025 01:15:08
  • Last modified 04.03.2025 21:58:37

IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to obtain sensitive information from the dashboard UI using man in the middle techniques.

5.4

CVE-2023-32340

  • EPSS 0.03%
  • Published 23.01.2025 03:15:08
  • Last modified 04.03.2025 21:36:47

IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to cr...

5.4

CVE-2023-50309

  • EPSS 0.03%
  • Published 23.01.2025 03:15:08
  • Last modified 04.03.2025 21:36:47

IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin...

8.8

CVE-2024-31903

  • EPSS 14.19%
  • Published 22.01.2025 16:15:29
  • Last modified 05.03.2025 16:02:20

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 allow an attacker on the local network to execute arbitrary code on the system, caused by the deserialization of untrusted data.

5.4

CVE-2024-31913

  • EPSS 0.06%
  • Published 06.01.2025 16:15:28
  • Last modified 05.03.2025 16:02:20

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended...

6.4

CVE-2024-31914

  • EPSS 0.18%
  • Published 06.01.2025 16:15:28
  • Last modified 29.09.2025 22:17:43

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended...

5.4

CVE-2021-20553

  • EPSS 0.05%
  • Published 19.12.2024 00:15:04
  • Last modified 06.03.2025 19:02:47

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading ...

3.7

CVE-2023-42010

  • EPSS 0.12%
  • Published 17.07.2024 18:15:03
  • Last modified 21.11.2024 08:22:05

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 could disclose sensitive information in the HTTP response using man in the middle techniques. IBM X-Force ID: 265507.

5.4

CVE-2023-42011

  • EPSS 0.05%
  • Published 27.06.2024 18:15:13
  • Last modified 21.11.2024 08:22:06

IBM Sterling B2B Integrator Standard Edition 6.1 and 6.2 does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain, which can lead to user confusion about which interface the user is interactin...

5.4

CVE-2023-42014

  • EPSS 0.07%
  • Published 27.06.2024 18:15:13
  • Last modified 21.11.2024 08:22:06

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.2.0.2 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality pote...