CVE-2021-29798

Name of the Vulnerable Software and Affected Versions IBM Sterling B2B Integrator Standard Edition versions 6.0.0.0 through 6.1.1.0

Description The issue allows a remote attacker to send specially crafted SQL statements, potentially enabling them to view, add, modify, or delete information in the back-end database. This is achieved through SQL injection.

Recommendations For versions 6.0.0.0 through 6.1.1.0, apply the necessary patches or updates to fix the SQL injection issue. As a temporary workaround, consider restricting access to the database and limiting the execution of SQL statements from remote sources until a patch is available.