IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 could allow an authenticated user to obtain sensitive information due to improper permission controls. IBM X-Force ID: 216109.
References
| Link | Resource |
|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/216109 | VDB Entry Vendor Advisory |
| https://www.ibm.com/support/pages/node/6612541 | Vendor Advisory |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/216109 | VDB Entry Vendor Advisory |
| https://www.ibm.com/support/pages/node/6612541 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
21 Nov 2024, 06:18
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/216109 - VDB Entry, Vendor Advisory | |
| References | () https://www.ibm.com/support/pages/node/6612541 - Vendor Advisory |
17 Aug 2022, 14:37
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:* cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:* cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:* cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:standard:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
|
| CWE | CWE-276 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
| References | (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/216109 - VDB Entry, Vendor Advisory | |
| References | (CONFIRM) https://www.ibm.com/support/pages/node/6612541 - Vendor Advisory |
16 Aug 2022, 19:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2022-08-16 19:15
Updated : 2024-11-21 06:18
NVD link : CVE-2021-39087
Mitre link : CVE-2021-39087
CVE.ORG link : CVE-2021-39087
JSON object : View
Products Affected
ibm
- aix
- sterling_b2b_integrator
oracle
- solaris
hp
- hp-ux
microsoft
- windows
linux
- linux_kernel
CWE
CWE-276
Incorrect Default Permissions