VYPR
Unrated severityNVD Advisory· Published Oct 20, 2020· Updated Sep 16, 2024

CVE-2020-4564

CVE-2020-4564

Description

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.0.3.1 and IBM Sterling File Gateway 2.2.0.0 through 6.0.3.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 183933.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • IBM/Sterling File Gatewayllm-fuzzy2 versions
    >=2.2.0.0, <=6.0.3.1+ 1 more
    • (no CPE)range: >=2.2.0.0, <=6.0.3.1
    • (no CPE)range: 2.2.0.0
  • IBM/Sterling B2b Integratorllm-fuzzy2 versions
    >=5.2.0.0, <=6.0.3.1+ 1 more
    • (no CPE)range: >=5.2.0.0, <=6.0.3.1
    • (no CPE)range: 5.2.0.0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.