Stored Cross-Site Scripting Vulnerability in IBM Sterling B2B Integrator
CVE-2023-50309
5.4MEDIUM
Key Information:
- Vendor
IBM
- Vendor
- CVE Published:
- 23 January 2025
What is CVE-2023-50309?
IBM Sterling B2B Integrator versions 6.0.0.0 through 6.2.0.0 are affected by a stored cross-site scripting vulnerability. This flaw allows attackers to inject and execute arbitrary JavaScript code within the web application interface. Such an exploit can change the behavior of the application, potentially leading to the disclosure of user credentials during an active session. Organizations using these versions should apply the latest updates to mitigate this risk.
Affected Version(s)
Sterling B2B Integrator Standard Edition 6.0.0.0 <= 6.1.2.5
Sterling B2B Integrator Standard Edition 6.2.0.0