Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sterling file gateway vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-20489
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 197790.
Ibm Sterling File Gateway
8.8
CVSSv3
CVE-2020-4647
IBM Sterling File Gateway 2.2.0.0 up to and including 2.2.6.5 and 6.0.0.0 up to and including 6.0.3.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in ...
Ibm Sterling File Gateway
8.1
CVSSv3
CVE-2014-0927
The ActiveMQ admin user interface in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote malicious users to bypass authentication by leveraging knowledge of the port number and webapp path. IBM X-Force ID: 92259.
Ibm Sterling B2b Integrator 5.1
Ibm Sterling B2b Integrator 5.2
Ibm Sterling File Gateway 2.2
Ibm Sterling File Gateway 2.1
7.8
CVSSv3
CVE-2017-1544
IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 up to and including 2.2.6) caches usernames and passwords in browsers that could be used by a local malicious user to obtain sensitive information. IBM X-Force ID: 130812.
Ibm Sterling File Gateway
7.5
CVSSv3
CVE-2021-20584
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow a remote malicious user to upload arbitrary files, caused by improper access controls. IBM X-Force ID: 199397.
Ibm Sterling B2b Integrator
7.5
CVSSv3
CVE-2020-4476
IBM Sterling File Gateway 2.2.0.0 up to and including 2.2.6.5 and 6.0.0.0 up to and including 6.0.3.2 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further ...
Ibm Sterling File Gateway
7.2
CVSSv3
CVE-2019-4147
IBM Sterling File Gateway 2.2.0.0 up to and including 6.0.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 1...
Ibm Sterling File Gateway
6.5
CVSSv3
CVE-2020-4654
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow an authenticated user to obtain sensitive information due to improper permission control. IBM X-Force ID: 186090.
Ibm Sterling File Gateway
6.5
CVSSv3
CVE-2021-20473
IBM Sterling File Gateway User Interface 2.2.0.0 up to and including 6.1.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 196944.
Ibm Sterling File Gateway
6.5
CVSSv3
CVE-2021-20375
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow an authenticated user to intercept and replace a message sent by another user due to improper access controls. IBM X-Force ID: 195567.
Ibm Sterling B2b Integrator
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »