CVE-2023-42011

IBM Sterling B2B Integrator Standard Edition 6.1 and 6.2 does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain, which can lead to user confusion about which interface the user is interacting with. IBM X-Force ID: 265508.

Published: Jun 27, 2024
Updated: Aug 7, 2024
CVE: CVE-2023-42011
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.4
AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWEs:

CWE-1021

Affected Software
References

Software	From	Fixed in
ibm / sterling_b2b_integrator	6.1	6.1.x
ibm / sterling_b2b_integrator	6.2	6.2.x

https://exchange.xforce.ibmcloud.com/vulnerabilities/265508
https://www.ibm.com/support/pages/node/7158657

Vulnerability Database

289,697

CVE-2023-42011