3 matches found
CVE-2021-20473
IBM Sterling File Gateway User Interface 2.2.0.0 through 6.1.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 196944...
CVE-2021-20473
IBM Sterling File Gateway UI versions 2.2.0.0–6.1.1.0 are vulnerable because the product does not invalidate sessions after logout, enabling an authenticated user to impersonate another user. The issue is addressed in IBM’s security bulletin with remediation guidance: upgrade to fixed releases (5...
Security Bulletin: Session Fixation Vulnerability Affects BM Sterling File Gateway (CVE-2021-20473)
Summary IBM Sterling File Gateway has addressed the security vulnerability. Vulnerability Details CVEID: CVE-2021-20473 DESCRIPTION: IBM Sterling File Gateway User Interface does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...