Vulnerability-Lookup

CNVD-2021-02005

Vulnerability from cnvd - Published: 2021-01-11

Title

IBM Sterling B2B Integrator任意代码执行漏洞

Description

IBM Sterling B2B Integrator是一个交易引擎，是一套根据您的业务需求运行您定义和管理的流程的组件。 IBM Sterling B2B Integrator 5.2.0.0 - 5.2.6.5_2、6.0.0.0 - 6.0.3.2、6.1.0.0存在任意代码执行漏洞。该漏洞源于不可信数据的反序列化。攻击者可通过发送特制请求利用该漏洞以SYSTEM权限执行任意代码。

Severity

高

Patch Name

IBM Sterling B2B Integrator任意代码执行漏洞的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新：https://www.ibm.com/support/pages/node/6396172

Reference

https://nvd.nist.gov/vuln/detail/CVE-2019-4728

Impacted products

Name
['IBM IBM Sterling B2B Integrator Standard Edition >=6.0.0.0，<=6.0.3.2', 'IBM IBM Sterling B2B Integrator Standard Edition >=5.2.0.0，<=5.2.6.5_2', 'IBM IBM Sterling B2B Integrator Standard Edition 6.1.0.0']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-4728",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2019-4728"
    }
  },
  "description": "IBM Sterling B2B Integrator\u662f\u4e00\u4e2a\u4ea4\u6613\u5f15\u64ce\uff0c\u662f\u4e00\u5957\u6839\u636e\u60a8\u7684\u4e1a\u52a1\u9700\u6c42\u8fd0\u884c\u60a8\u5b9a\u4e49\u548c\u7ba1\u7406\u7684\u6d41\u7a0b\u7684\u7ec4\u4ef6\u3002\n\nIBM Sterling B2B Integrator 5.2.0.0 - 5.2.6.5_2\u30016.0.0.0 - 6.0.3.2\u30016.1.0.0\u5b58\u5728\u4efb\u610f\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u4e0d\u53ef\u4fe1\u6570\u636e\u7684\u53cd\u5e8f\u5217\u5316\u3002\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u8bf7\u6c42\u5229\u7528\u8be5\u6f0f\u6d1e\u4ee5SYSTEM\u6743\u9650\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1ahttps://www.ibm.com/support/pages/node/6396172",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-02005",
  "openTime": "2021-01-11",
  "patchDescription": "IBM Sterling B2B Integrator\u662f\u4e00\u4e2a\u4ea4\u6613\u5f15\u64ce\uff0c\u662f\u4e00\u5957\u6839\u636e\u60a8\u7684\u4e1a\u52a1\u9700\u6c42\u8fd0\u884c\u60a8\u5b9a\u4e49\u548c\u7ba1\u7406\u7684\u6d41\u7a0b\u7684\u7ec4\u4ef6\u3002\r\n\r\nIBM Sterling B2B Integrator 5.2.0.0 - 5.2.6.5_2\u30016.0.0.0 - 6.0.3.2\u30016.1.0.0\u5b58\u5728\u4efb\u610f\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u4e0d\u53ef\u4fe1\u6570\u636e\u7684\u53cd\u5e8f\u5217\u5316\u3002\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u8bf7\u6c42\u5229\u7528\u8be5\u6f0f\u6d1e\u4ee5SYSTEM\u6743\u9650\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "IBM Sterling B2B Integrator\u4efb\u610f\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "IBM IBM Sterling B2B Integrator Standard Edition \u003e=6.0.0.0\uff0c\u003c=6.0.3.2",
      "IBM IBM Sterling B2B Integrator Standard Edition \u003e=5.2.0.0\uff0c\u003c=5.2.6.5_2",
      "IBM IBM Sterling B2B Integrator Standard Edition 6.1.0.0"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2019-4728",
  "serverity": "\u9ad8",
  "submitTime": "2021-01-06",
  "title": "IBM Sterling B2B Integrator\u4efb\u610f\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

CVE-2019-4728 (GCVE-0-2019-4728)

Vulnerability from cvelistv5 – Published: 2021-01-05 15:10 – Updated: 2024-09-17 03:07

Summary

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5_2, 6.0.0.0 through 6.0.3.2, and 6.1.0.0 could allow a remote attacker to execute arbitrary code on the system, caused by the deserialization of untrusted data. By sending specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code with SYSTEM privileges. IBM X-Force ID: 172452.

Severity ?

8.8 (High)


                        
                          CVSS:3.0/AC:L/S:U/I:H/AV:N/PR:L/C:H/UI:N/A:H/RL:O/RC:C/E:U

CWE

Gain Access

Assigner

ibm

References

URL

Tags

	https://www.ibm.com/support/pages/node/6396172	x_refsource_CONFIRM
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF

Impacted products

	Vendor	Product	Version
	IBM	Sterling B2B Integrator	Affected: 6.0.0.0 Affected: 5.2.0.0 Affected: 6.0.3.2 Affected: 6.1.0.0 Affected: 5.2.6.5_2

Date Public ?

2021-01-04 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T19:40:49.087Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.ibm.com/support/pages/node/6396172"
          },
          {
            "name": "ibm-sterling-cve20194728-code-exec (172452)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/172452"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Sterling B2B Integrator",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "6.0.0.0"
            },
            {
              "status": "affected",
              "version": "5.2.0.0"
            },
            {
              "status": "affected",
              "version": "6.0.3.2"
            },
            {
              "status": "affected",
              "version": "6.1.0.0"
            },
            {
              "status": "affected",
              "version": "5.2.6.5_2"
            }
          ]
        }
      ],
      "datePublic": "2021-01-04T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5_2, 6.0.0.0 through 6.0.3.2, and 6.1.0.0 could allow a remote attacker to execute arbitrary code on the system, caused by the deserialization of untrusted data. By sending specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code with SYSTEM privileges. IBM X-Force ID: 172452."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitCodeMaturity": "UNPROVEN",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "remediationLevel": "OFFICIAL_FIX",
            "reportConfidence": "CONFIRMED",
            "scope": "UNCHANGED",
            "temporalScore": 7.7,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AC:L/S:U/I:H/AV:N/PR:L/C:H/UI:N/A:H/RL:O/RC:C/E:U",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Gain Access",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-01-05T15:10:17.000Z",
        "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
        "shortName": "ibm"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.ibm.com/support/pages/node/6396172"
        },
        {
          "name": "ibm-sterling-cve20194728-code-exec (172452)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/172452"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@us.ibm.com",
          "DATE_PUBLIC": "2021-01-04T00:00:00",
          "ID": "CVE-2019-4728",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Sterling B2B Integrator",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "6.0.0.0"
                          },
                          {
                            "version_value": "5.2.0.0"
                          },
                          {
                            "version_value": "6.0.3.2"
                          },
                          {
                            "version_value": "6.1.0.0"
                          },
                          {
                            "version_value": "5.2.6.5_2"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "IBM"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5_2, 6.0.0.0 through 6.0.3.2, and 6.1.0.0 could allow a remote attacker to execute arbitrary code on the system, caused by the deserialization of untrusted data. By sending specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code with SYSTEM privileges. IBM X-Force ID: 172452."
            }
          ]
        },
        "impact": {
          "cvssv3": {
            "BM": {
              "A": "H",
              "AC": "L",
              "AV": "N",
              "C": "H",
              "I": "H",
              "PR": "L",
              "S": "U",
              "UI": "N"
            },
            "TM": {
              "E": "U",
              "RC": "C",
              "RL": "O"
            }
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Gain Access"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.ibm.com/support/pages/node/6396172",
              "refsource": "CONFIRM",
              "title": "IBM Security Bulletin 6396172 (Sterling B2B Integrator)",
              "url": "https://www.ibm.com/support/pages/node/6396172"
            },
            {
              "name": "ibm-sterling-cve20194728-code-exec (172452)",
              "refsource": "XF",
              "title": "X-Force Vulnerability Report",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/172452"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
    "assignerShortName": "ibm",
    "cveId": "CVE-2019-4728",
    "datePublished": "2021-01-05T15:10:17.666Z",
    "dateReserved": "2019-01-03T00:00:00.000Z",
    "dateUpdated": "2024-09-17T03:07:40.149Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2021-02005

CVE-2019-4728 (GCVE-0-2019-4728)

Tags

Sightings

Nomenclature