CVE-2020-4646
4.3
CVSS:3.0/I:N/AV:N/UI:N/S:U/C:L/PR:L/AC:L/A:N/RC:C/E:U/RL:O
Summary
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5, 6.0.0.0 through 6.0.3.3, and 6.1.0.0 through 6.1.0.2 could allow an authenticated user to view pages they shoiuld not have access to due to improper authorization control.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | Sterling B2B Integrator | 6.0.0.0 | affected |
| IBM | Sterling B2B Integrator | 5.2.0.0 | affected |
| IBM | Sterling B2B Integrator | 5.2.6.5 | affected |
| IBM | Sterling B2B Integrator | 6.1.0.0 | affected |
| IBM | Sterling B2B Integrator | 6.0.3.3 | affected |
| IBM | Sterling B2B Integrator | 6.1.0.2 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
- https://www.ibm.com/support/pages/node/6454169
- https://exchange.xforce.ibmcloud.com/vulnerabilities/185808
References
- https://www.ibm.com/support/pages/node/6454169
- https://exchange.xforce.ibmcloud.com/vulnerabilities/185808
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.