CVE-2019-4063
First published: Tue Mar 05 2019(Updated: )
IBM Sterling B2B Integrator 5.2.0.1 through 6.0.0.0 Standard Edition could allow highly sensitive information to be transmitted in plain text. An attacker could obtain this information using man in the middle techniques. IBM X-ForceID: 157008.
Credit: psirt@us.ibm.com psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM B2B Sterling Integrator | >=5.2.0.1<=6.0.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-4063?
CVE-2019-4063 is classified as a high severity vulnerability due to the potential exposure of sensitive information.
How do I fix CVE-2019-4063?
To mitigate CVE-2019-4063, it is recommended to upgrade IBM Sterling B2B Integrator to a version above 6.0.0.0.
What type of information is affected by CVE-2019-4063?
CVE-2019-4063 can expose highly sensitive information transmitted in plain text.
Who is affected by CVE-2019-4063?
CVE-2019-4063 affects users of IBM Sterling B2B Integrator versions 5.2.0.1 to 6.0.0.0.
How can attackers exploit CVE-2019-4063?
Attackers can exploit CVE-2019-4063 by using man-in-the-middle techniques to intercept unencrypted data.
- agent/type
- agent/remedy
- agent/references
- agent/weakness
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/first-publish-date
- agent/last-modified-date
- agent/author
- agent/softwarecombine
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/ibm
- canonical/ibm b2b sterling integrator
- version/ibm b2b sterling integrator/5.2.0.1
- version/ibm b2b sterling integrator/6.0.0.0