Sterling B2b Integrator

sterling_b2b_integrator

Vendor: Ibm • 195 CVEs

CVEs (195)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-5019 1Ibm 2Sterling B2b Integrator Sterling Integrator May 6, 2026 Nov 8, 2015 N/A· v4 N/A· v3 5.5 MEDIUM· v2 IBM Sterling Integrator 5.1 before 5010004_8 and Sterling B2B Integrator 5.2 before 5020500_9 allow remote authenticated users to read or upload files by leveraging a password-change requirement.
CVE-2015-4992 1Ibm 1Sterling B2b Integrator May 6, 2026 Oct 6, 2015 N/A· v4 N/A· v3 3.5 LOW· v2 IBM Sterling B2B Integrator 5.2 before 5020500_8 allows remote authenticated users to conduct clickjacking attacks via unspecified vectors.
CVE-2014-6199 1Ibm 2Sterling B2b Integrator Sterling File Gateway May 6, 2026 Jan 10, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The HTTP Server Adapter in IBM Sterling B2B Integrator 5.1 and 5.2.x and Sterling File Gateway 2.1 and 2.2 allows remote attackers to cause a denial of service (connection-slot exhaustion) via a crafted HTTP request.
CVE-2014-6146 1Ibm 1Sterling B2b Integrator May 6, 2026 Nov 8, 2014 N/A· v4 N/A· v3 1.9 LOW· v2 IBM Sterling B2B Integrator 5.2.x through 5.2.4, when the Connect:Direct Server Adapter is configured, does not properly process the logging configuration, which allows local users to obtain sensitive information by read...Show more IBM Sterling B2B Integrator 5.2.x through 5.2.4, when the Connect:Direct Server Adapter is configured, does not properly process the logging configuration, which allows local users to obtain sensitive information by reading log files.Show less
CVE-2014-6099 1Ibm 1Sterling B2b Integrator May 6, 2026 Oct 26, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Change Password feature in IBM Sterling B2B Integrator 5.2.x through 5.2.4 does not have a lockout protection mechanism for invalid login requests, which makes it easier for remote attackers to obtain admin access vi...Show more The Change Password feature in IBM Sterling B2B Integrator 5.2.x through 5.2.4 does not have a lockout protection mechanism for invalid login requests, which makes it easier for remote attackers to obtain admin access via a brute-force approach.Show less
CVE-2013-5413 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Dec 21, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 do not invalidate a session upon a logout action, which allows remote attackers to bypass authentication by leveraging an unattended workstation.
CVE-2013-5411 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Dec 21, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote attackers to inject links and trigger unintended navigation or actions via unspecified vectors.
CVE-2013-5409 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Dec 21, 2013 N/A· v4 N/A· v3 6.5 MEDIUM· v2 Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
CVE-2013-5407 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Dec 21, 2013 N/A· v4 N/A· v3 4.9 MEDIUM· v2 IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 do not properly restrict use of FRAME elements, which allows remote authenticated users to bypass intended access restrictions or obtain sensitive information...Show more IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 do not properly restrict use of FRAME elements, which allows remote authenticated users to bypass intended access restrictions or obtain sensitive information via a crafted web site, related to a "frame injection" issue.Show less
CVE-2013-5406 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Dec 21, 2013 N/A· v4 N/A· v3 3.5 LOW· v2 Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, lea...Show more Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, leading to improper interaction with the Windows MHTML protocol handler.Show less
CVE-2013-5405 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Dec 21, 2013 N/A· v4 N/A· v3 3.5 LOW· v2 Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters.
CVE-2013-0494 1Ibm 1Sterling B2b Integrator Apr 29, 2026 Aug 9, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 IBM Sterling B2B Integrator 5.0 and 5.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted HTTP (1) Range or (2) Request-Range header.
CVE-2013-4002 6Apache CanonicalIbm+3 more 15Host On Demand JavaJdk+12 more Apr 29, 2026 Jul 23, 2013 N/A· v4 N/A· v3 7.1 HIGH· v2 XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracl...Show more XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, Java SE Embedded 7u40 and earlier, and possibly other products allows remote attackers to cause a denial of service via vectors related to XML attribute names.Show less
CVE-2013-3020 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Jul 3, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnera...Show more IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2985, CVE-2013-2987, CVE-2013-0568, CVE-2013-0475, and CVE-2013-0567.Show less
CVE-2013-2987 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Jul 3, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnera...Show more IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2985, CVE-2013-3020, CVE-2013-0568, CVE-2013-0475, and CVE-2013-0567.Show less
CVE-2013-2985 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Jul 3, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnera...Show more IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2987, CVE-2013-3020, CVE-2013-0568, CVE-2013-0475, and CVE-2013-0567.Show less
CVE-2013-2984 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Jul 3, 2013 N/A· v4 N/A· v3 6.5 MEDIUM· v2 Directory traversal vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote authenticated users to read or modify files via unspecified vectors.
CVE-2013-2982 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Jul 3, 2013 N/A· v4 N/A· v3 6.5 MEDIUM· v2 IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to upload arbitrary files via unspecified vectors.
CVE-2013-0568 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Jul 3, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnera...Show more IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2985, CVE-2013-2987, CVE-2013-3020, CVE-2013-0475, and CVE-2013-0567.Show less
CVE-2013-0567 1Ibm 2Sterling B2b Integrator Sterling File Gateway Apr 29, 2026 Jul 3, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnera...Show more IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2985, CVE-2013-2987, CVE-2013-3020, CVE-2013-0568, and CVE-2013-0475.Show less

Previous 1...6 7 8910 Next