CyberSec.Space Logo
返回 CVE 浏览器

CVE-2021-29903

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1100%
EPSS Percentile38.79th
Published2021年10月6日
Last Modified2024年11月21日

Vulnerability Description

IBM Sterling B2B Integrator Standard Edition 5.2.6.0 through 6.1.1.0 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 207506.

Affected Platforms (CPE)

📦
Ibm

Sterling B2b Integrator

>= 5.2.6.0 and <= 6.0.3.4
📦
Ibm

Sterling B2b Integrator

>= 6.1.0.0 and <= 6.1.0.3

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/207506
🔗 https://www.ibm.com/support/pages/node/6495919
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/207506
🔗 https://www.ibm.com/support/pages/node/6495919

相关漏洞威胁

CVE-2021-390859.8

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 is vuln...

CVE-2021-297989.8

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.1.0 is vulnerable to SQL injection. A remote attacker could send ...

CVE-2012-59379.3

Unspecified vulnerability in the CLA2 server in IBM Gentran Integration Suite 4.3, Sterling Integrator 5.0 and 5.1, and Sterling B...

CVE-2019-47288.8

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5_2, 6.0.0.0 through 6.0.3.2, and 6.1.0.0 could allow a remote ...