Path Traversal in Ibm Sterling_b2b_integrator

CVE-2013-2984

Directory traversal vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote authenticated users to read or modify files via unspecified vectors.

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.005 (64.9th percentile) — read the EPSS interpretation.

Affected products

Ibm Sterling_b2b_integrator — versions 5.1, 5.2
Ibm Sterling_file_gateway — versions 2.1, 2.2
N/a — versions n/a

Weakness classification (CWE)

CWE-22 — Path Traversal

References

sterling-b2b-cve20132984-path(84006) (vdb-entry, x_refsource_XF)
psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
IC91046 (vendor-advisory, x_refsource_AIXAPAR, Vendor Advisory)