Описание
IBM Sterling B2B Integrator Standard Edition 6.1 and 6.2 does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain, which can lead to user confusion about which interface the user is interacting with. IBM X-Force ID: 265508.
Ссылки
- VDB EntryVendor Advisory
- Vendor Advisory
- VDB EntryVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:sterling_b2b_integrator:6.1:*:*:*:standard:*:*:*
cpe:2.3:a:ibm:sterling_b2b_integrator:6.2:*:*:*:standard:*:*:*
EPSS
Процентиль: 17%
0.00052
Низкий
4.3 Medium
CVSS3
5.4 Medium
CVSS3
Дефекты
CWE-1021
Связанные уязвимости
CVSS3: 4.3
github
больше 1 года назад
IBM Sterling B2B Integrator Standard Edition 6.1 and 6.2 does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain, which can lead to user confusion about which interface the user is interacting with. IBM X-Force ID: 265508.
EPSS
Процентиль: 17%
0.00052
Низкий
4.3 Medium
CVSS3
5.4 Medium
CVSS3
Дефекты
CWE-1021