Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sterling file gateway vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-20372
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow a remote authenticated user to cause a denial of another user's service due to insufficient permission checking. IBM X-Force ID: 195518.
Ibm Sterling B2b Integrator
6.5
CVSSv3
CVE-2021-20375
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 could allow an authenticated user to intercept and replace a message sent by another user due to improper access controls. IBM X-Force ID: 195567.
Ibm Sterling B2b Integrator
6.1
CVSSv3
CVE-2021-20561
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a tr...
Ibm Sterling B2b Integrator
4.3
CVSSv3
CVE-2017-1326
IBM Sterling File Gateway does not properly restrict user requests based on permission level. This allows for users to update data related to other users, by manipulating the parameters passed in the POST request. IBM X-Force ID: 126060.
Ibm Sterling B2b Integrator 5.2
6.5
CVSSv3
CVE-2020-4259
IBM Sterling File Gateway 2.2.0.0 up to and including 6.0.3.1 could allow an authenticated user could manipulate cookie information and remove or add modules from the cookie to access functionality not authorized to. IBM X-Force ID: 175638.
Ibm Sterling File Gateway
4.3
CVSSv3
CVE-2021-20552
IBM Sterling File Gateway 6.0.0.0 up to and including 6.1.1.0 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ...
Ibm Sterling File Gateway
6.1
CVSSv3
CVE-2020-4658
IBM Sterling File Gateway 2.2.0.0 up to and including 6.0.3.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a tr...
Ibm Sterling File Gateway
NA
CVE-2023-47714
IBM Sterling File Gateway 6.0.0.0 up to and including 6.0.3.9, 6.1.0.0 up to and including 6.1.2.3, and 6.2.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti...
5.3
CVSSv3
CVE-2021-39086
IBM Sterling File Gateway 6.0.0.0 up to and including 6.0.3.5, 6.1.0.0 up to and including 6.1.0.4, and 6.1.1.0 up to and including 6.1.1.1 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This...
Ibm Sterling File Gateway
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7