CVE-2019-4728

Summary

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5_2, 6.0.0.0 through 6.0.3.2, and 6.1.0.0 could allow a remote attacker to execute arbitrary code on the system, caused by the deserialization of untrusted data. By sending specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code with SYSTEM privileges. IBM X-Force ID: 172452.

Affected Software

VendorProductVersion RangeStatus
IBMSterling B2B Integrator6.0.0.0affected
IBMSterling B2B Integrator5.2.0.0affected
IBMSterling B2B Integrator6.0.3.2affected
IBMSterling B2B Integrator6.1.0.0affected
IBMSterling B2B Integrator5.2.6.5_2affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References