CVE-2013-5409SQL Injection in IBM Sterling B2B Integrator

CWE-89SQL Injection3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.3%
top 45.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Sterling B2B IntegratorIBM Sterling File Gateway
Timeline
PublishedDec 21
Latest updateMay 17

Description

Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 8.0 | Impact: 6.4

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-h878-7h69-2c69: Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 52022-05-17
CVEList
CVE-2013-5409: Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 52013-12-21
CVE-2013-5409 — SQL Injection in IBM | cvebase