Medium Severity

Security Bulletin: Phishing Attack Vulnerability Affects IBM Sterling B2B Integrator (CVE-2019-4595)

Share this post:

IBM Sterling B2B Integrator has addressed the Phishing attack vulnerability.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Sterling B2B Integrator 5.2.0.0 – 5.2.6.5

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/3137439

More stories

Security Bulletin: Multiple cross-site scripting vulnerabilities affect IBM DOORS Next Generation

Apr 7, 2020 8:01 pm EDT | Medium Severity

There are multiple cross-site scripting defects that affect IBM DOORS Next Generation (DNG/RRC) ...read more


Security Bulletin: IBM Security Information Queue has insufficient session expiration (CVE-2020-4284)

Apr 7, 2020 8:01 pm EDT | Medium Severity

IBM Security Information Queue (ISIQ) does not have a mechanism for terminating idle UI sessions. This leaves an unattended ISIQ session vulnerable to being compromised. As of v1.0.6, ISIQ automatically terminates a session that has been idle for 60 minutes. The timeout value is configurable. ...read more


Security Bulletin: IBM Security Information Queue uses components with known vulnerabilities (CVE-2019-8331, CVE-2019-11358)

Apr 7, 2020 8:00 pm EDT | Medium Severity

The IBM Security Information Queue (ISIQ) web server utilizes a Node.js runtime environment. The environment includes several open source packages with known vulnerabilities. As of ISIQ v1.0.6, the open source packages have been upgraded to the recommended secure versions. ...read more