CVE-2022-22352

CVSS V2 None CVSS V3 None
Description
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 220398.
Overview
  • CVE ID
  • CVE-2022-22352
  • Assigner
  • psirt@us.ibm.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-01-04T18:15:08
  • Last Modified Date
  • 2023-01-10T20:16:41
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:standard:*:*:* 1 OR 6.0.0.0 6.0.3.7
cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:standard:*:*:* 1 OR 6.1.0.0 6.1.0.6
cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:standard:*:*:* 1 OR 6.1.1.0 6.1.1.2
cpe:2.3:a:ibm:sterling_b2b_integrator:6.1.2.0:*:*:*:standard:*:*:* 1 OR
History
Created Old Value New Value Data Type Notes
2023-01-04 18:20:49 Added to TrackCVE
2023-01-04 18:20:50 Weakness Enumeration new
2023-01-04 20:15:15 2023-01-04T19:43:04 CVE Modified Date updated
2023-01-04 20:15:15 Received Awaiting Analysis Vulnerability Status updated
2023-01-09 04:26:08 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-09 05:19:32 Undergoing Analysis Awaiting Analysis Vulnerability Status updated
2023-01-09 16:18:59 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-10 20:25:54 2023-01-10T20:16:41 CVE Modified Date updated
2023-01-10 20:25:54 Undergoing Analysis Analyzed Vulnerability Status updated
2023-01-10 20:25:57 CPE Information updated