CVE-2021-38954

MEDIUM

IBM Sterling B2B Integrator <6.1.1.0 - Info Disclosure

Title source: llm
STIX 2.1

Description

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5 and 6.1.0.0 through 6.1.1.0 could disclose sensitive version information that could aid in future attacks against the system. IBM X-Force ID: 211414.

References (2)

Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/pages/node/6599607
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/211414

Scores

CVSS v3 4.3
EPSS 0.0012
EPSS Percentile 30.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Details

Status published
Products (1)
ibm/sterling_b2b_integrator 6.0.0.0 - 6.0.3.5
Published Jun 30, 2022
Tracked Since Feb 18, 2026