Vulnerability Description
Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to execute arbitrary SQL commands via vectors involving the RNVisibility page and unspecified screens, a different vulnerability than CVE-2013-0560.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Sterling B2B Integrator | 5.1 |
| Ibm | Sterling File Gateway | 2.1 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC84082Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21627982Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21640830Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80267
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC84082Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21627982Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21640830Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80267
FAQ
What is CVE-2012-5766?
CVE-2012-5766 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to execute arbitrary SQL commands via vectors i...
How severe is CVE-2012-5766?
CVE-2012-5766 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-5766?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Sterling B2B Integrator, Ibm Sterling File Gateway.