IBM Sterling File Gateway could allow an authenticated user to change other user’s passwords.
CVEID: CVE-2017-1550**
DESCRIPTION:** IBM Sterling File Gateway could allow an authenticated user to change other user’s passwords.
CVSS Base Score: 6.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/131290> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N)
IBM Sterling File Gateway 2.2
Product & Version
| APAR|Remediation/Fix
—|—|—
IBM Sterling File Gateway 2.2| IT21229| Apply B2B Integrator fix pack 5020500_16, 5020601_9, 5020602_5 or 5020603_3 Fix Central
None