CVE-2024-31913
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Jan 6, 2025
CWE ID 79
Summary
CVE-2024-31913 is a stored cross-site scripting (XSS) vulnerability affecting IBM Sterling B2B Integrator Standard Edition versions 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2. Maliciously crafted JavaScript code can be embedded in the Web UI, altering its intended functionality. This issue potentially enables unauthorized users to disclose sensitive information, including credentials, within a trusted session.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Sterling B2B Integrator Standard Edition