CVE-2019-4575
Description
IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.9 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 166801.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
IBM Financial Transaction Manager for Digital Payments 3.2.0 through 3.2.9 is vulnerable to SQL injection, allowing remote attackers to manipulate the back-end database.
Vulnerability
IBM Financial Transaction Manager for Digital Payments for Multi-Platform versions 3.2.0 through 3.2.9 are vulnerable to SQL injection. The vulnerability allows a remote attacker to send specially-crafted SQL statements, which could permit unauthorized database operations. [1]
Exploitation
An attacker with low privileges and network access can exploit this vulnerability by sending malicious SQL statements to the affected application. The attack requires no user interaction but has high complexity due to potential safeguards. [1]
Impact
Successful exploitation could allow the attacker to view, add, modify, or delete information in the back-end database. This impacts the integrity and availability of data, although confidentiality is not directly affected. The CVSS vector indicates a high availability impact. [1]
Mitigation
IBM released version 3.2.10 to address this vulnerability. Affected users should upgrade to this version. No workarounds or mitigations are provided. [1]
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <=3.2.9
- Range: 3.2.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/166801mitrevdb-entryx_refsource_XF
- www.ibm.com/support/pages/node/6594797mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.