{"containers":{"cna":{"affected":[{"product":"Sterling B2B Integrator","vendor":"IBM","versions":[{"status":"affected","version":"6.0.0.0"},{"status":"affected","version":"5.2.0.0"},{"status":"affected","version":"5.2.6.5"},{"status":"affected","version":"6.0.3.1"}]}],"datePublic":"2020-12-09T00:00:00.000Z","descriptions":[{"lang":"en","value":"IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 and 6.0.0.0 through 6.0.3.1 discloses sensitive information to an authenticated user from the dashboard UI which could be used in further attacks against the system. IBM X-Force ID: 172753."}],"metrics":[{"cvssV3_0":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"NONE","baseScore":4.3,"baseSeverity":"MEDIUM","confidentialityImpact":"LOW","exploitCodeMaturity":"UNPROVEN","integrityImpact":"NONE","privilegesRequired":"LOW","remediationLevel":"OFFICIAL_FIX","reportConfidence":"CONFIRMED","scope":"UNCHANGED","temporalScore":3.8,"temporalSeverity":"LOW","userInteraction":"NONE","vectorString":"CVSS:3.0/C:L/UI:N/S:U/AV:N/I:N/AC:L/A:N/PR:L/RC:C/RL:O/E:U","version":"3.0"}}],"problemTypes":[{"descriptions":[{"description":"Obtain Information","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2020-12-10T22:11:06.000Z","orgId":"9a959283-ebb5-44b6-b705-dcc2bbced522","shortName":"ibm"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"https://www.ibm.com/support/pages/node/6380390"},{"name":"ibm-sterling-cve20194738-info-disc (172753)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/172753"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"psirt@us.ibm.com","DATE_PUBLIC":"2020-12-09T00:00:00","ID":"CVE-2019-4738","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Sterling B2B Integrator","version":{"version_data":[{"version_value":"6.0.0.0"},{"version_value":"5.2.0.0"},{"version_value":"5.2.6.5"},{"version_value":"6.0.3.1"}]}}]},"vendor_name":"IBM"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 and 6.0.0.0 through 6.0.3.1 discloses sensitive information to an authenticated user from the dashboard UI which could be used in further attacks against the system. IBM X-Force ID: 172753."}]},"impact":{"cvssv3":{"BM":{"A":"N","AC":"L","AV":"N","C":"L","I":"N","PR":"L","S":"U","UI":"N"},"TM":{"E":"U","RC":"C","RL":"O"}}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Obtain Information"}]}]},"references":{"reference_data":[{"name":"https://www.ibm.com/support/pages/node/6380390","refsource":"CONFIRM","title":"IBM Security Bulletin 6380390 (Sterling B2B Integrator)","url":"https://www.ibm.com/support/pages/node/6380390"},{"name":"ibm-sterling-cve20194738-info-disc (172753)","refsource":"XF","title":"X-Force Vulnerability Report","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/172753"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T19:40:49.043Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://www.ibm.com/support/pages/node/6380390"},{"name":"ibm-sterling-cve20194738-info-disc (172753)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/172753"}]}]},"cveMetadata":{"assignerOrgId":"9a959283-ebb5-44b6-b705-dcc2bbced522","assignerShortName":"ibm","cveId":"CVE-2019-4738","datePublished":"2020-12-10T22:11:06.307Z","dateReserved":"2019-01-03T00:00:00.000Z","dateUpdated":"2024-09-17T03:19:07.522Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}