Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sterling secure proxy 6.0.3.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-29261
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 could allow a local user with specific information about the system to obtain privileged information due to inadequate memory clearing during operations. IBM X-Force ID: 252139.
Ibm Sterling External Authentication Server 6.0.3.0
Ibm Sterling External Authentication Server 6.1.0
NA
CVE-2023-32338
IBM Sterling Secure Proxy and IBM Sterling External Authentication Server 6.0.3 and 6.1.0 stores user credentials in plain clear text which can be read by a local user with container access. IBM X-Force ID: 255585.
Ibm Sterling Secure Proxy 6.0.3
Ibm Sterling External Authentication Server 6.0.3.0
Ibm Sterling External Authentication Server 6.1.0
Ibm Sterling Secure Proxy 6.1.0
3.3
CVSSv2
CVE-2022-22333
IBM Sterling Secure Proxy 6.0.3.0, 6.0.2.0, and 3.4.3.2 and IBM Sterling External Authentication Server are vulnerable a buffer overflow, due to the Jetty based GUI in the Secure Zone not properly validating the sizes of the form content and/or HTTP headers submitted. A local att...
Ibm Sterling External Authentication Server 3.4.3.2
Ibm Sterling External Authentication Server 6.0.2.0
Ibm Sterling External Authentication Server 6.0.3.0
Ibm Sterling Secure Proxy 3.4.3.2
Ibm Sterling Secure Proxy 6.0.2
Ibm Sterling Secure Proxy 6.0.3.0
5
CVSSv2
CVE-2022-22336
IBM Sterling External Authentication Server and IBM Sterling Secure Proxy 6.0.3.0, 6.0.2.0, and 3.4.3.2 could allow a remote user to consume resources causing a denial of service due to a resource leak. IBM X-Force ID: 219395.
Ibm Sterling External Authentication Server 3.4.3.2
Ibm Sterling External Authentication Server 6.0.2.0
Ibm Sterling External Authentication Server 6.0.3.0
Ibm Sterling Secure Proxy 3.4.3.2
Ibm Sterling Secure Proxy 6.0.2
Ibm Sterling Secure Proxy 6.0.3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started