A vulnerability was found in IBM Sterling B2B Integrator Standard Edition up to 5.2.6 (Business Process Management Software). It has been rated as problematic. Affected by this issue is an unknown part of the component Debugging Message Handler. The manipulation with an unknown input leads to a credentials management vulnerability. Using CWE to declare the problem leads to CWE-255. Impacted is confidentiality. CVE summarizes:

IBM Sterling B2B Integrator Standard Edition 5.2 through 5.2.6 could allow a local user with administrator privileges to obtain user passwords found in debugging messages. IBM X-Force ID: 142968.

The bug was discovered 07/17/2018. The weakness was presented 07/20/2018 (Website). The advisory is shared for download at exchange.xforce.ibmcloud.com. This vulnerability is handled as CVE-2018-1564 since 12/13/2017. The exploitation is known to be easy. The attack needs to be approached locally. No form of authentication is required for exploitation. There are neither technical details nor an exploit publicly available. The MITRE ATT&CK project declares the attack technique as T1552.

The vulnerability was handled as a non-public zero-day exploit for at least 3 days. During that time the estimated underground price was around $0-$5k.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

See 122017 and 122049 for similar entries.

Productinfo

Type

• Business Process Management Software

Vendor

• IBM

Name

• Sterling B2B Integrator Standard Edition

Version

• 5.2.0
• 5.2.1
• 5.2.2
• 5.2.3
• 5.2.4
• 5.2.5
• 5.2.6

License

• commercial

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion