CVE-2020-4668

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.3, and 6.1.1.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 186283.
References
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:standard:*:*:*
cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:standard:*:*:*
cpe:2.3:a:ibm:sterling_b2b_integrator:6.1.1.0:*:*:*:standard:*:*:*
OR cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

14 Apr 2022, 16:57

Type Values Removed Values Added
CWE CWE-352
CVSS v2 : unknown
v3 : unknown
v2 : 6.8
v3 : 8.8
CPE cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:standard:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_b2b_integrator:6.1.1.0:*:*:*:standard:*:*:*
First Time Linux linux Kernel
Microsoft windows
Microsoft
Ibm
Linux
Ibm sterling B2b Integrator
Ibm aix
References (CONFIRM) https://www.ibm.com/support/pages/node/6570407 - (CONFIRM) https://www.ibm.com/support/pages/node/6570407 - Patch, Vendor Advisory
References (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/186283 - (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/186283 - VDB Entry, Vendor Advisory

08 Apr 2022, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-04-08 16:15

Updated : 2023-12-10 14:22


NVD link : CVE-2020-4668

Mitre link : CVE-2020-4668

CVE.ORG link : CVE-2020-4668


JSON object : View

Products Affected

linux

  • linux_kernel

microsoft

  • windows

ibm

  • aix
  • sterling_b2b_integrator
CWE
CWE-352

Cross-Site Request Forgery (CSRF)