CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2013-2985
https://notcve.org/view.php?id=CVE-2013-2985
03 Jul 2013 — IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2987, CVE-2013-3020, CVE-2013-0568, CVE-2013-0475, and CVE-2013-0567. IBM Sterling B2B Integrator 5.1 y 5.2 y Sterling File Gateway 2.1 y 2.2, permite a usuarios autenticados remotamente la obtención de información sensible sobre la implementación de la ap... • http://www-01.ibm.com/support/docview.wss?uid=swg21640830 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2013-0475
https://notcve.org/view.php?id=CVE-2013-0475
03 Jul 2013 — IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2985, CVE-2013-2987, CVE-2013-3020, CVE-2013-0568, and CVE-2013-0567. IBM Sterling B2B Integrator v5.1 y v5.2 y Sterling File Gateway v2.1 y v2.2 permite a usuarios remotos autenticados obtener información confidencial sobre la implementación de aplicacion... • http://www-01.ibm.com/support/docview.wss?uid=swg21640830 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.9EPSS: 0%CPEs: 4EXPL: 0CVE-2013-0539
https://notcve.org/view.php?id=CVE-2013-0539
03 Jul 2013 — An unspecified third-party component in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 uses short session ID values, which makes it easier for remote attackers to hijack sessions, and consequently obtain sensitive information, via a brute-force attack. Un componente de terceros no especificado en BM Sterling B2B Integrator v5.1 y v5.2 y Sterling File Gateway v2.1 y v2.2 utiliza los valores de ID de sesión corta, lo que hace que sea más fácil para los atacantes remotos secuestr... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC92007 • CWE-255: Credentials Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2013-0456
https://notcve.org/view.php?id=CVE-2013-0456
03 Jul 2013 — IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to hijack sessions via a modified cookie path. IBM Sterling B2B Integrator v5.1 y v5.2 y Sterling File Gateway v2.1 y v2.2 permiten a los usuarios autenticados remotos secuestrar sesiones a través de una modificación de la ruta de la cookie. • http://www-01.ibm.com/support/docview.wss?uid=swg21640830 •
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2013-0468
https://notcve.org/view.php?id=CVE-2013-0468
03 Jul 2013 — Cross-site scripting (XSS) vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2013-2983. Vulnerabilidad Cross-site scripting (XSS) en IBM Sterling B2B Integrator v5.1 y v5.2 y Sterling File Gateway v2.1 y v2.2 permite a usuarios remotos autenticados inyectar secuencias de comandos web o HTML a través de vectores no especificados, una... • http://www-01.ibm.com/support/docview.wss?uid=swg21640830 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2013-0560
https://notcve.org/view.php?id=CVE-2013-0560
03 Jul 2013 — Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2012-5766. Múltiples vulnerabilidades de inyección SQL en IBM Sterling B2B Integrator 5.1 y 5.2 y Sterling File Gateway 2.1 y 2.2, permite a usuarios autenticados remotamente la ejecución de comandos SQL arbitrarios a través de vectores no especificados. Vulnerabil... • http://www-01.ibm.com/support/docview.wss?uid=swg21640830 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2013-0463
https://notcve.org/view.php?id=CVE-2013-0463
03 Jul 2013 — IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-2985, CVE-2013-2987, CVE-2013-3020, CVE-2013-0568, CVE-2013-0475, and CVE-2013-0567. IBM Sterling B2B Integrator v5.1 y v5.2 y Sterling File Gateway v2.1 y v2.2 permite a usuarios remotos autenticados obtener información confidencial sobre la implementación de aplicacion... • http://www-01.ibm.com/support/docview.wss?uid=swg21640830 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2013-0455
https://notcve.org/view.php?id=CVE-2013-0455
02 Jul 2013 — Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling B2B Integrator 5.2.4 and Sterling File Gateway allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Múltiples vulnerabilidades de cross-site scripting (XSS) en IBM Sterling B2B Integrator v5.2.4 y Sterling File Gateway permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados, una vulnerabilidad distinta a CVE-2013-2983. • http://www-01.ibm.com/support/docview.wss?uid=swg1IC92888 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 0CVE-2013-2983
https://notcve.org/view.php?id=CVE-2013-2983
02 Jul 2013 — Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling File Gateway 2.2 and Sterling B2B Integrator allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2013-0468. Múltiples vulnerabilidades XSS en IBM Sterling File Gateway v2.2 y Sterling B2B Integrator permiten a atacantes remotos inyectar secuencias de comandos web o HTML mediante vectores desconocidos, una vulnerabilidad diferente a CVE-2013-0455. • http://www-01.ibm.com/support/docview.wss?uid=swg1IC91045 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2012-5937
https://notcve.org/view.php?id=CVE-2012-5937
12 Apr 2013 — Unspecified vulnerability in the CLA2 server in IBM Gentran Integration Suite 4.3, Sterling Integrator 5.0 and 5.1, and Sterling B2B Integrator 5.2, as used in IBM Sterling File Gateway 1.1 through 2.2 and other products, allows remote attackers to execute arbitrary commands via unknown vectors. Vulnerabilidad no especificada en el servidor CLA2 de IBM Gentran Integration Suite v4.3, Sterling Integrator v5.0 y v5.1, y Sterling B2B Integrador de v5.2, tal y como se utiliza en la puerta de enlace de IBM Sterl... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC85189 •