Code injection

2021-10-0718:15:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.6%

JSON

IBM Sterling File Gateway User Interface 2.2.0.0 through 6.1.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 196944.

CPENameOperatorVersion
sterling_file_gatewayge2.2.0.0
sterling_file_gatewayle5.2.6.5
sterling_file_gatewayge6.0.0.0
sterling_file_gatewayle6.0.3.4
sterling_file_gatewayge6.1.0.0
sterling_file_gatewayle6.1.0.1

Name	Operator	Version
sterling_file_gateway	ge	2.2.0.0
sterling_file_gateway	le	5.2.6.5
sterling_file_gateway	ge	6.0.0.0
sterling_file_gateway	le	6.0.3.4
sterling_file_gateway	ge	6.1.0.0
sterling_file_gateway	le	6.1.0.1