Sterling File Gateway@2.2.0 Security Vulnerabilities and Issues — Sterling File Gateway@2.2.0 CVE List

Lucene search

IbmSterling File Gateway2.2.0

5 matches found

CVE•added 2018/07/20 4:29 p.m.•59 views

CVE-2018-1563

IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 through 2.2.6) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure...

5.4CVSS5.1AI score0.02417EPSS

CVE•added 2018/07/20 4:29 p.m.•40 views

CVE-2017-1575

IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 through 2.2.6) uses weaker than expected cryptographic algorithms that could allow a local attacker to decrypt highly sensitive information. IBM X-Force ID: 132032.

5.5CVSS5.7AI score0.00023EPSS

CVE•added 2018/07/20 4:29 p.m.•37 views

CVE-2017-1544

IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 through 2.2.6) caches usernames and passwords in browsers that could be used by a local attacker to obtain sensitive information. IBM X-Force ID: 130812.

7.8CVSS7AI score0.00052EPSS

CVE•added 2018/07/20 4:29 p.m.•37 views

CVE-2018-1398

IBM Sterling File Gateway 2.2.0 through 2.2.6 could allow a remote attacker to download certain files that could contain sensitive information. IBM X-Force ID: 138434.

5.3CVSS5.1AI score0.0021EPSS

CVE•added 2018/07/20 4:29 p.m.•33 views

CVE-2018-1470

IBM Sterling File Gateway 2.2.0 through 2.2.6 could allow a remote authenticated attacker to obtain sensitive information displayed in the URL that could lead to further attacks against the system. IBM X-Force ID: 140688.

4.3CVSS4.7AI score0.00128EPSS