IBM » Sterling B2b Integrator : Security Vulnerabilities, CVEs, Published In 2014

CVE-2014-6146

IBM Sterling B2B Integrator 5.2.x through 5.2.4, when the Connect:Direct Server Adapter is configured, does not properly process the logging configuration, which allows local users to obtain sensitive information by reading log files.
Max CVSS
1.9
EPSS Score
0.04%
Published
2014-11-08
Updated
2017-09-08

CVE-2014-6099

The Change Password feature in IBM Sterling B2B Integrator 5.2.x through 5.2.4 does not have a lockout protection mechanism for invalid login requests, which makes it easier for remote attackers to obtain admin access via a brute-force approach.
Max CVSS
5.0
EPSS Score
0.33%
Published
2014-10-26
Updated
2017-09-08
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close