CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-0194

XML External Entity (XXE) vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and IBM Sterling File Gateway 2.1 and 2.2 allows remote attackers to read arbitrary files via a crafted XML data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.0%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

http://www-01.ibm.com/support/docview.wss?uid=swg1IT06733
http://www-01.ibm.com/support/docview.wss?uid=swg21699482
http://www.securityfocus.com/bid/73401
http://www-01.ibm.com/support/docview.wss?uid=swg1IT06733
http://www-01.ibm.com/support/docview.wss?uid=swg21699482
http://www.securityfocus.com/bid/73401

Products affected by CVE-2015-0194

Ibm » Sterling B2b Integrator » Version: 5.1

cpe:2.3:a:ibm:sterling_b2b_integrator:5.1
Ibm » Sterling B2b Integrator » Version: 5.2

cpe:2.3:a:ibm:sterling_b2b_integrator:5.2
Ibm » Sterling File Gateway » Version: 2.1

cpe:2.3:a:ibm:sterling_file_gateway:2.1
Ibm » Sterling File Gateway » Version: 2.2

cpe:2.3:a:ibm:sterling_file_gateway:2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-0194

Products

Pricing

Contact Us