IBM Sterling B2B Integrator Standard Edition has addressed the information disclosure vulnerability.
CVEID: CVE-2019-4063 DESCRIPTION: IBM Sterling B2B Integrator Standard Edition could allow highly sensitive information to be transmitted in plain text. An attacker could obtain this information using man in the middle techniques.
CVSS Base Score: 5.9
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/157008> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
IBM Sterling B2B Integrator 5.2.0.1 - 6.0.0.0
PRODUCT & Version
| APAR |
Remediation/Fix
—|—|—
IBM Sterling B2B Integrator 5.2.0.1 - 6.0.0.0
| IT26305 |
Apply IBM Sterling B2B Integrator version 5.2.6.3_9 or 6.0.0.1 available on Fix Central
No