IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 do not invalidate a session upon a logout action, which allows remote attackers to bypass authentication by leveraging an unattended workstation.
CPE | Name | Operator | Version |
---|---|---|---|
sterling_b2b_integrator | eq | 5.2 | |
sterling_file_gateway | eq | 2.2 |