Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sterling secure proxy vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2013-0518
IBM Sterling Secure Proxy 3.2.0 and 3.3.01 prior to 3.3.01.23 Interim Fix 1, 3.4.0 prior to 3.4.0.6 Interim Fix 1, and 3.4.1 prior to 3.4.1.7 does not refuse to be rendered in different-origin frames, which makes it easier for remote malicious users to conduct clickjacking attack...
Ibm Sterling Secure Proxy 3.4.0.0
Ibm Sterling Secure Proxy 3.4.1.0
Ibm Sterling Secure Proxy 3.4.1.2
Ibm Sterling Secure Proxy 3.4.1.6
Ibm Sterling Secure Proxy 3.4.1.5
Ibm Sterling Secure Proxy 3.2.0.0
Ibm Sterling Secure Proxy 3.3.0.1
5
CVSSv2
CVE-2013-0519
IBM Sterling Secure Proxy 3.2.0 and 3.3.01 prior to 3.3.01.23 Interim Fix 1, 3.4.0 prior to 3.4.0.6 Interim Fix 1, and 3.4.1 prior to 3.4.1.7 provides web-server version data in (1) an unspecified page title and (2) an unspecified HTTP header field, which allows remote malicious ...
Ibm Sterling Secure Proxy 3.4.0.0
Ibm Sterling Secure Proxy 3.4.1.0
Ibm Sterling Secure Proxy 3.4.1.2
Ibm Sterling Secure Proxy 3.2.0.0
Ibm Sterling Secure Proxy 3.3.0.1
Ibm Sterling Secure Proxy 3.4.1.6
Ibm Sterling Secure Proxy 3.4.1.5
4
CVSSv2
CVE-2013-0520
IBM Sterling Secure Proxy 3.2.0 and 3.3.01 prior to 3.3.01.23 Interim Fix 1, 3.4.0 prior to 3.4.0.6 Interim Fix 1, and 3.4.1 prior to 3.4.1.7 allows remote authenticated users to obtain sensitive Java stack-trace information by providing invalid input data.
Ibm Sterling Secure Proxy 3.4.0.0
Ibm Sterling Secure Proxy 3.4.1.0
Ibm Sterling Secure Proxy 3.4.1.6
Ibm Sterling Secure Proxy 3.2.0.0
Ibm Sterling Secure Proxy 3.3.0.1
Ibm Sterling Secure Proxy 3.4.1.5
Ibm Sterling Secure Proxy 3.4.1.2
NA
CVE-2023-47147
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 could allow an malicious user to overwrite a log message under specific conditions. IBM X-Force ID: 270598.
Ibm Sterling Secure Proxy 6.0.3
Ibm Sterling Secure Proxy 6.1.0
NA
CVE-2023-47162
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X...
Ibm Sterling Secure Proxy 6.0.3
Ibm Sterling Secure Proxy 6.1.0
5
CVSSv2
CVE-2016-6023
Directory traversal vulnerability in the Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 prior to 3.4.2.0 iFix 8 and 3.4.3 prior to 3.4.3.0 iFix 1 allows remote malicious users to read arbitrary files via a crafted URL.
Ibm Sterling Secure Proxy 3.4.2.0
Ibm Sterling Secure Proxy 3.4.3.0
4.6
CVSSv2
CVE-2016-6025
The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 prior to 3.4.2.0 iFix 8 and 3.4.3 prior to 3.4.3.0 iFix 1 allows remote malicious users to obtain access by leveraging an unattended workstation to conduct a post-logoff session-reuse attack involving a modified U...
Ibm Sterling Secure Proxy 3.4.2.0
Ibm Sterling Secure Proxy 3.4.3.0
5.8
CVSSv2
CVE-2016-6027
The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 prior to 3.4.2.0 iFix 8 and 3.4.3 prior to 3.4.3.0 iFix 1 does not enable the HSTS protection mechanism, which makes it easier for remote malicious users to obtain sensitive information or modify data by leveragin...
Ibm Sterling Secure Proxy 3.4.3.0
Ibm Sterling Secure Proxy 3.4.2.0
NA
CVE-2023-47699
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X...
Ibm Sterling Secure Proxy 6.0.3
Ibm Sterling Secure Proxy 6.1.0
NA
CVE-2023-46179
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent ...
Ibm Sterling Secure Proxy 6.0.3
Ibm Sterling Secure Proxy 6.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »