Vulnerabilities > CVE-2016-5890 - Credentials Management vulnerability in IBM Sterling B2B Integrator 5.2

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

high complexity

ibm

CWE-255

NVD

Published: 2016-11-30

Updated: 2016-12-03

Summary

IBM Sterling B2B Integrator 5.2 before 5020500_14 and 5.2 06 before 5020602_1 allows remote authenticated users to change arbitrary passwords via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Sterling B2B Integrator 5.2	1

Common Weakness Enumeration (CWE)

CWE-255 - Credentials Management

References

http://www-01.ibm.com/support/docview.wss?uid=swg21989577
http://www.securityfocus.com/bid/94391
http://www-01.ibm.com/support/docview.wss?uid=swg1IT16043