Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sterling file gateway vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-4280
IBM Sterling File Gateway 2.2.0.0 up to and including 6.0.1.0 displays sensitive information in HTTP requests which could be used in further attacks against the system. IBM X-Force ID: 160503.
Ibm Sterling File Gateway
4
CVSSv2
CVE-2018-1470
IBM Sterling File Gateway 2.2.0 up to and including 2.2.6 could allow a remote authenticated malicious user to obtain sensitive information displayed in the URL that could lead to further attacks against the system. IBM X-Force ID: 140688.
Ibm Sterling File Gateway
4
CVSSv2
CVE-2021-20485
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.0.3 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ...
Ibm Sterling File Gateway
4
CVSSv2
CVE-2021-20563
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.0.3 could allow a remote authenciated user to obtain sensitive information. By sending a specially crafted request, the user could disclose a valid filepath on the server which could be used in further attacks against the ...
Ibm Sterling File Gateway
2.1
CVSSv2
CVE-2017-1544
IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 up to and including 2.2.6) caches usernames and passwords in browsers that could be used by a local malicious user to obtain sensitive information. IBM X-Force ID: 130812.
Ibm Sterling File Gateway
2.1
CVSSv2
CVE-2017-1575
IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 up to and including 2.2.6) uses weaker than expected cryptographic algorithms that could allow a local malicious user to decrypt highly sensitive information. IBM X-Force ID: 132032.
Ibm Sterling File Gateway
3.5
CVSSv2
CVE-2021-20484
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a tr...
Ibm Sterling File Gateway
5
CVSSv2
CVE-2019-4423
IBM Sterling File Gateway 2.2.0.0 up to and including 6.0.1.0 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. I...
Ibm Sterling File Gateway
5
CVSSv2
CVE-2020-4476
IBM Sterling File Gateway 2.2.0.0 up to and including 2.2.6.5 and 6.0.0.0 up to and including 6.0.3.2 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further ...
Ibm Sterling File Gateway
4
CVSSv2
CVE-2020-4654
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow an authenticated user to obtain sensitive information due to improper permission control. IBM X-Force ID: 186090.
Ibm Sterling File Gateway
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »