7 matches found
Security Bulletin: IBM Sterling File Gateway myfg 2.0 has Access Control Vulnerabilities (CVE-2024-22316 CVE-2023-47159)
Summary IBM Sterling File Gateway myfg 2.0 has Access Control Vulnerabilities. Vulnerability Details CVEID:CVE-2024-22316 DESCRIPTION: IBM Sterling File Gateway could allow an authenticated user to perform unauthorized actions to another user's data due to improper access controls. CWE:CWE-284:...
CVE-2023-47159
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to enumerate usernames due to an observable discrepancy in request responses...
CVE-2023-47159
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to enumerate usernames due to an observable discrepancy in request responses...
CVE-2023-47159
creationtimestamp| type| source ---|---|--- 2025-01-27 16:14:19+00:00| seen| https://infosec.exchange/users/cve/statuses/113901204887276183 2025-01-27 16:16:04+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqdmdiqov2p 2025-01-27 17:40:26+00:00| seen|...
CVE-2023-47159 IBM Sterling File Gateway information disclosure
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to enumerate usernames due to an observable discrepancy in request responses...
CVE-2023-47159
CVE-2023-47159 affects IBM Sterling File Gateway 6.0.0.0–6.1.2.5 and 6.2.0.0–6.2.0.1. The issue allows an authenticated user to enumerate usernames due to an observable discrepancy in request responses (CWE-204). Impact is information disclosure of usernames; no exploitation details are provided ...
CVE-2023-47159 IBM Sterling File Gateway information disclosure
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to enumerate usernames due to an observable discrepancy in request responses...