IBM Sterling External Authentication Server 3.4.3.2, 6.0.2.0, and 6.0.3.0 is vulnerable to path traversals, due to not properly validating RESTAPI configuration data. An authorized user could import invalid data which could be used for an attack. IBM X-Force ID: 220144.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm sterling external authentication server 3.4.3.2 |
||
ibm sterling external authentication server 6.0.2.0 |
||
ibm sterling external authentication server 6.0.3.0 |