Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sterling file gateway vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2021-20489
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 197790.
Ibm Sterling File Gateway
4
CVSSv2
CVE-2021-20563
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.0.3 could allow a remote authenciated user to obtain sensitive information. By sending a specially crafted request, the user could disclose a valid filepath on the server which could be used in further attacks against the ...
Ibm Sterling File Gateway
4
CVSSv2
CVE-2021-20473
IBM Sterling File Gateway User Interface 2.2.0.0 up to and including 6.1.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 196944.
Ibm Sterling File Gateway
3.5
CVSSv2
CVE-2021-20484
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a tr...
Ibm Sterling File Gateway
2.1
CVSSv2
CVE-2017-1575
IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 up to and including 2.2.6) uses weaker than expected cryptographic algorithms that could allow a local malicious user to decrypt highly sensitive information. IBM X-Force ID: 132032.
Ibm Sterling File Gateway
5
CVSSv2
CVE-2020-4476
IBM Sterling File Gateway 2.2.0.0 up to and including 2.2.6.5 and 6.0.0.0 up to and including 6.0.3.2 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further ...
Ibm Sterling File Gateway
2.1
CVSSv2
CVE-2017-1544
IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 up to and including 2.2.6) caches usernames and passwords in browsers that could be used by a local malicious user to obtain sensitive information. IBM X-Force ID: 130812.
Ibm Sterling File Gateway
6.5
CVSSv2
CVE-2019-4147
IBM Sterling File Gateway 2.2.0.0 up to and including 6.0.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 1...
Ibm Sterling File Gateway
6.5
CVSSv2
CVE-2020-4647
IBM Sterling File Gateway 2.2.0.0 up to and including 2.2.6.5 and 6.0.0.0 up to and including 6.0.3.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in ...
Ibm Sterling File Gateway
4
CVSSv2
CVE-2020-4654
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow an authenticated user to obtain sensitive information due to improper permission control. IBM X-Force ID: 186090.
Ibm Sterling File Gateway
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »