CVE-2024-27263

Name of the Vulnerable Software and Affected Versions IBM Sterling B2B Integrator versions 6.0.0.0 through 6.1.2.5 IBM Sterling B2B Integrator versions 6.2.0.0 through 6.2.0.1

Description The issue is related to the dashboard UI of IBM Sterling B2B Integrator, where an authenticated user could obtain sensitive information using man-in-the-middle techniques. This could allow a remote attacker to implement a man-in-the-middle attack.

Recommendations For IBM Sterling B2B Integrator versions 6.0.0.0 through 6.1.2.5, consider restricting access to the dashboard UI to minimize the risk of exploitation. For IBM Sterling B2B Integrator versions 6.2.0.0 through 6.2.0.1, consider restricting access to the dashboard UI to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.