Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sterling file gateway vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-20485
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.0.3 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ...
Ibm Sterling File Gateway
8.8
CVSSv3
CVE-2021-20489
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 197790.
Ibm Sterling File Gateway
4.3
CVSSv3
CVE-2021-20563
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.0.3 could allow a remote authenciated user to obtain sensitive information. By sending a specially crafted request, the user could disclose a valid filepath on the server which could be used in further attacks against the ...
Ibm Sterling File Gateway
5.3
CVSSv3
CVE-2018-1398
IBM Sterling File Gateway 2.2.0 up to and including 2.2.6 could allow a remote malicious user to download certain files that could contain sensitive information. IBM X-Force ID: 138434.
Ibm Sterling File Gateway
5.3
CVSSv3
CVE-2019-4280
IBM Sterling File Gateway 2.2.0.0 up to and including 6.0.1.0 displays sensitive information in HTTP requests which could be used in further attacks against the system. IBM X-Force ID: 160503.
Ibm Sterling File Gateway
5.3
CVSSv3
CVE-2019-4423
IBM Sterling File Gateway 2.2.0.0 up to and including 6.0.1.0 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. I...
Ibm Sterling File Gateway
7.5
CVSSv3
CVE-2020-4476
IBM Sterling File Gateway 2.2.0.0 up to and including 2.2.6.5 and 6.0.0.0 up to and including 6.0.3.2 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further ...
Ibm Sterling File Gateway
8.8
CVSSv3
CVE-2020-4647
IBM Sterling File Gateway 2.2.0.0 up to and including 2.2.6.5 and 6.0.0.0 up to and including 6.0.3.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in ...
Ibm Sterling File Gateway
4.3
CVSSv3
CVE-2020-4763
IBM Sterling File Gateway 6.0.0.0 up to and including 6.0.3.2 and 2.2.0.0 up to and including 2.2.6.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting th...
Ibm Sterling File Gateway
4.3
CVSSv3
CVE-2018-1470
IBM Sterling File Gateway 2.2.0 up to and including 2.2.6 could allow a remote authenticated malicious user to obtain sensitive information displayed in the URL that could lead to further attacks against the system. IBM X-Force ID: 140688.
Ibm Sterling File Gateway
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »