Vulnerability Description
IBM Sterling Integrator 5.1 before 5010004_8 and Sterling B2B Integrator 5.2 before 5020500_9 allow remote authenticated users to read or upload files by leveraging a password-change requirement.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Sterling B2B Integrator | 5.2 |
| Ibm | Sterling Integrator | 5.1 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT11008Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21967781Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT11008Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21967781Vendor Advisory
FAQ
What is CVE-2015-5019?
CVE-2015-5019 is a vulnerability with a CVSS score of 5.5 (MEDIUM). IBM Sterling Integrator 5.1 before 5010004_8 and Sterling B2B Integrator 5.2 before 5020500_9 allow remote authenticated users to read or upload files by leveraging a password-change requirement.
How severe is CVE-2015-5019?
CVE-2015-5019 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-5019?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Sterling B2B Integrator, Ibm Sterling Integrator.