CVE-2019-4146 - IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 could allow an authenticated user t

CVE-2019-4146

Summary

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 could allow an authenticated user to obtain sensitive document information under unusual circumstances. IBM X-Force ID: 158401.

References

https://www.ibm.com/support/docview.wss?uid=ibm10880595
https://exchange.xforce.ibmcloud.com/vulnerabilities/158401
http://www.securityfocus.com/bid/108110

Vulnerable Configurations

cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.0.0:*:*:*:standard:*:*:*
cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.0.0:*:*:*:standard:*:*:*
cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.0.1:*:*:*:standard:*:*:*
cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.0.1:*:*:*:standard:*:*:*

CVSS

Base:	3.5 (as of 30-01-2023 - 19:10)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	SINGLE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:M/Au:S/C:P/I:N/A:N

refmap via4

bid	108110
confirm	https://www.ibm.com/support/docview.wss?uid=ibm10880595
xf	ibm-sterling-cve20194146-info-disc (158401)

Last major update

30-01-2023 - 19:10

Published

25-04-2019 - 15:29

Last modified

30-01-2023 - 19:10