Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm sterling secure proxy 3.4.2.0 vulnerabilities and exploits

(subscribe to this query)

5
CVSSv2
CVE-2016-6023
Directory traversal vulnerability in the Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 allows remote attackers to read arbitrary files via a crafted URL....
Ibm Sterling Secure Proxy 3.4.2.0Ibm Sterling Secure Proxy 3.4.3.0
4.6
CVSSv2
CVE-2016-6025
The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 allows remote attackers to obtain access by leveraging an unattended workstation to conduct a post-logoff session-reuse attack involving a modified URL....
Ibm Sterling Secure Proxy 3.4.2.0Ibm Sterling Secure Proxy 3.4.3.0
2.9
CVSSv2
CVE-2016-6026
The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 allows man-in-the-middle attackers to obtain sensitive information via an HTTP method that is neither GET nor POST....
Ibm Sterling Secure Proxy 3.4.2.0Ibm Sterling Secure Proxy 3.4.3.0
5.8
CVSSv2
CVE-2016-6027
The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 does not enable the HSTS protection mechanism, which makes it easier for remote attackers to obtain sensitive information or modify data by leveraging use of...
Ibm Sterling Secure Proxy 3.4.2.0Ibm Sterling Secure Proxy 3.4.3.0
6.4
CVSSv2
CVE-2020-4462
IBM Sterling External Authentication Server 6.0.1, 6.0.0, 2.4.3.2, and 2.4.2 and IBM Sterling Secure Proxy 6.0.1, 6.0.0, 3.4.3, and 3.4.2 are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability...
Ibm Sterling External Authentication Server 2.4.2.0Ibm Sterling External Authentication Server 2.4.3.2Ibm Sterling External Authentication Server 6.0.0.0Ibm Sterling External Authentication Server 6.0.1.0Ibm Sterling Secure Proxy 3.4.2.0Ibm Sterling Secure Proxy 3.4.3.0Ibm Sterling Secure Proxy 6.0.0.0Ibm Sterling Secure Proxy 6.0.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-1647CVE-2021-20491CVE-2021-28310CVE-2021-30487CVE-2021-21087XPath injectionbrute forceCVE-2020-7308remote attackers
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook