CVE-2024-45089

Summary

IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 Standard Edition EBICS server could allow an authenticated user to obtain sensitive filename information due to an observable discrepancy.

Affected Software

VendorProductVersion RangeStatus
IBMSterling B2B Integrator6.0.0.0 <= 6.1.2.5affected
IBMSterling B2B Integrator6.2.0.0 <= 6.2.0.3affected

Weaknesses

  • CWE-203: CWE-203 Observable Discrepancy

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References