Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sterling file gateway vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-5413
IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 do not invalidate a session upon a logout action, which allows remote malicious users to bypass authentication by leveraging an unattended workstation.
Ibm Sterling B2b Integrator 5.2
Ibm Sterling File Gateway 2.2
5.3
CVSSv3
CVE-2017-1548
IBM Sterling File Gateway 2.2 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 131288.
Ibm Sterling File Gateway 2.2
5.4
CVSSv3
CVE-2017-1549
IBM Sterling File Gateway 2.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 1...
Ibm Sterling File Gateway 2.2
6.5
CVSSv3
CVE-2017-1550
IBM Sterling File Gateway 2.2 could allow an authenticated user to change other user's passwords. IBM X-Force ID: 131290.
Ibm Sterling File Gateway 2.2
6.5
CVSSv3
CVE-2017-1487
IBM Sterling File Gateway 2.2 could allow an authenticated malicious user to obtain sensitive information such as login ids on the system. IBM X-Force ID: 128626.
Ibm Sterling File Gateway 2.2
5.4
CVSSv3
CVE-2017-1632
IBM Sterling File Gateway 2.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 1...
Ibm Sterling File Gateway 2.2
3.7
CVSSv3
CVE-2017-1497
IBM Sterling File Gateway 2.2 could allow an unauthorized user to view files they should not have access to providing they know the directory location of the file. IBM X-Force ID: 128695.
Ibm Sterling File Gateway 2.2
NA
CVE-2014-6199
The HTTP Server Adapter in IBM Sterling B2B Integrator 5.1 and 5.2.x and Sterling File Gateway 2.1 and 2.2 allows remote malicious users to cause a denial of service (connection-slot exhaustion) via a crafted HTTP request.
Ibm Sterling B2b Integrator 5.2.4
Ibm Sterling B2b Integrator 5.2.4.1
Ibm Sterling B2b Integrator 5.2.4.2
Ibm Sterling B2b Integrator 5.2.5.0
Ibm Sterling B2b Integrator 5.1
Ibm Sterling B2b Integrator 5.2
Ibm Sterling B2b Integrator 5.2.1
Ibm Sterling B2b Integrator 5.2.2
Ibm Sterling File Gateway 2.1
Ibm Sterling File Gateway 2.2
7.5
CVSSv3
CVE-2021-20584
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow a remote malicious user to upload arbitrary files, caused by improper access controls. IBM X-Force ID: 199397.
Ibm Sterling B2b Integrator
4.3
CVSSv3
CVE-2021-20376
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow an authenticated malicious user to enumerate usernames due to there being an observable discrepancy in returned messages. IBM X-Force ID: 195568.
Ibm Sterling B2b Integrator
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »