Vulnerability Details : CVE-2021-29700
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 could allow an authneticated attacker to obtain sensitive information from configuration files that could aid in further attacks against the system. IBM X-Force ID: 200656.
Products affected by CVE-2021-29700
- IBM » Sterling B2b IntegratorVersions from including (>=) 6.1.0.0 and up to, including, (<=) 6.1.0.2cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:*:*:*:*
- IBM » Sterling B2b IntegratorVersions from including (>=) 6.0.1.0 and up to, including, (<=) 6.0.3.4cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:*:*:*:*
- IBM » Sterling B2b IntegratorVersions from including (>=) 6.0.0.0 and up to, including, (<=) 6.0.0.6cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:*:*:*:*
- IBM » Sterling B2b IntegratorVersions from including (>=) 5.2.0.0 and up to, including, (<=) 5.2.6.5_4cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-29700
0.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 17 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-29700
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.0
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:N/A:N |
8.0
|
2.9
|
NIST | |
4.3
|
MEDIUM | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
2.8
|
1.4
|
IBM Corporation | |
4.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
2.8
|
1.4
|
NIST |
References for CVE-2021-29700
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/200656
IBM Sterling B2B Integrator Standard Edition information disclosure CVE-2021-29700 Vulnerability ReportVDB Entry;Vendor Advisory
-
https://www.ibm.com/support/pages/node/6496749
Security Bulletin: Informaton Disclosure Vulnerability Affects the Dashboard User Interface of IBM Stelring B2B Integrator (CVE-2021-29700)Patch;Vendor Advisory
Jump to