IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5_2, 6.0.0.0 through 6.0.3.2, and 6.1.0.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 188895.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/188895 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/6396146 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2021-01-05 07:15
Updated : 2021-01-08 07:52
NVD link : CVE-2020-4761
Mitre link : CVE-2020-4761
JSON object : View
CWE
CWE-209
Generation of Error Message Containing Sensitive Information
Products Affected
microsoft
- windows
ibm
- aix
- i
- sterling_b2b_integrator
hp
- hp-ux
linux
- linux_kernel
oracle
- solaris