CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-6146

IBM Sterling B2B Integrator 5.2.x through 5.2.4, when the Connect:Direct Server Adapter is configured, does not properly process the logging configuration, which allows local users to obtain sensitive information by reading log files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.7%

CVSS Severity

CVSS v2 Score 1.9

References

http://secunia.com/advisories/62190
http://www-01.ibm.com/support/docview.wss?uid=swg1IT04337
http://www-01.ibm.com/support/docview.wss?uid=swg21689082
https://exchange.xforce.ibmcloud.com/vulnerabilities/96916
http://secunia.com/advisories/62190
http://www-01.ibm.com/support/docview.wss?uid=swg1IT04337
http://www-01.ibm.com/support/docview.wss?uid=swg21689082
https://exchange.xforce.ibmcloud.com/vulnerabilities/96916

Products affected by CVE-2014-6146

Ibm » Sterling B2b Integrator » Version: 5.2.1

cpe:2.3:a:ibm:sterling_b2b_integrator:5.2.1
Ibm » Sterling B2b Integrator » Version: 5.2.2

cpe:2.3:a:ibm:sterling_b2b_integrator:5.2.2
Ibm » Sterling B2b Integrator » Version: 5.2.4

cpe:2.3:a:ibm:sterling_b2b_integrator:5.2.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-6146

Products

Pricing

Contact Us