CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-39035

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 213965.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.2%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2021-39035

Ibm » Sterling B2b Integrator » Version: 6.0.0.0

cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.0.0
Ibm » Sterling B2b Integrator » Version: 6.0.0.1

cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.0.1
Ibm » Sterling B2b Integrator » Version: 6.0.2.0

cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.2.0
Ibm » Sterling B2b Integrator » Version: 6.0.2.2

cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.2.2
Ibm » Sterling B2b Integrator » Version: 6.0.3.0

cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.3.0
Ibm » Sterling B2b Integrator » Version: 6.0.3.1

cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.3.1
Ibm » Sterling B2b Integrator » Version: 6.0.3.2

cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.3.2
Ibm » Sterling B2b Integrator » Version: 6.0.3.5

cpe:2.3:a:ibm:sterling_b2b_integrator:6.0.3.5
Ibm » Sterling B2b Integrator » Version: 6.1.0.0

cpe:2.3:a:ibm:sterling_b2b_integrator:6.1.0.0
Ibm » Sterling B2b Integrator » Version: 6.1.0.4

cpe:2.3:a:ibm:sterling_b2b_integrator:6.1.0.4
Ibm » Sterling B2b Integrator » Version: 6.1.1.0

cpe:2.3:a:ibm:sterling_b2b_integrator:6.1.1.0
Ibm » Sterling B2b Integrator » Version: 6.1.1.1

cpe:2.3:a:ibm:sterling_b2b_integrator:6.1.1.1
Hp » Hp-Ux » Version: N/A

cpe:2.3:o:hp:hp-ux:-
Ibm » Aix » Version: N/A

cpe:2.3:o:ibm:aix:-
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-
Oracle » Solaris » Version: N/A

cpe:2.3:o:oracle:solaris:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-39035

Products

Pricing

Contact Us