The Sterling Order Management APIs in IBM Sterling Multi-Channel Fulfillment Solution 8.0 before HF128 and IBM Sterling Selling and Fulfillment Foundation 8.5 before HF93, 9.0 before HF73, 9.1.0. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.
IBM
Authentication Bypass
Sterling Multi Channel Fulfillment Solution
Sterling Selling And Fulfillment Foundation
NVD
CVSS 2.0
3.5
EPSS
0.2%