Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Sterling B2B Integrator Standard Edition could allow a remote attacker to obtain sensitive information. By allowing HTTP OPTIONS method, a remote attacker could send a specially-crafted query to a vulnerable server running to cause the server to disclose sensitive information in the HTTP response.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Sterling B2B Integrator 信息泄露漏洞
Vulnerability Description
IBM Sterling B2B Integrator是美国IBM公司的一套集成了重要的B2B流程、交易和关系的软件。该软件支持与不同的合作伙伴社区之间实现复杂的B2B流程的安全集成。 IBM Sterling B2B Integrator 5.2版本和5.1版本中存在信息泄露漏洞。当程序使用HTTP OPTIONS方法时,远程攻击者可通过发送特制的查询利用该漏洞泄露敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A