CVE-2013-0475 — Sensitive Information Exposure in IBM Sterling B2B Integrator

CWE-200 — Sensitive Information Exposure4 documents4 sources

Severity

4.0MEDIUMNVD

EPSS

0.2%

top 63.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Sterling B2B Integrator IBM Sterling File Gateway

Timeline

PublishedJul 3

Latest updateMay 5

Description

IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-0463, CVE-2013-2985, CVE-2013-2987, CVE-2013-3020, CVE-2013-0568, and CVE-2013-0567.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages2 packages

▶NVDibm/sterling_file_gateway2.1, 2.2+1

▶NVDibm/sterling_b2b_integrator5.1, 5.2+1

🔴Vulnerability Details

GHSA

GHSA-7578-v4gv-6jrj: IBM Sterling B2B Integrator 5↗2022-05-05

▶

OSV

eglibc vulnerabilities↗2014-08-04

▶

CVEList

CVE-2013-0475: IBM Sterling B2B Integrator 5↗2013-07-03

▶