CVE-2013-0494 — IBM Sterling B2B Integrator vulnerability

CWE-3993 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

1.8%

top 17.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Sterling B2B Integrator

Timeline

PublishedAug 9

Latest updateMay 5

Description

IBM Sterling B2B Integrator 5.0 and 5.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted HTTP (1) Range or (2) Request-Range header.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDibm/sterling_b2b_integrator5.0, 5.1+1

🔴Vulnerability Details

GHSA

GHSA-gv3j-g2cr-6fwv: IBM Sterling B2B Integrator 5↗2022-05-05

▶

CVEList

CVE-2013-0494: IBM Sterling B2B Integrator 5↗2013-08-09

▶