Sterling Secure Proxy@6.0.1 Security Vulnerabilities and Issues — Sterling Secure Proxy@6.0.1 CVE List

Lucene search

IbmSterling Secure Proxy6.0.1

5 matches found

CVE•added 2021/08/30 5:15 p.m.•51 views

CVE-2021-29723

IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-ForceID: 201100.

7.5CVSS7.3AI score0.00142EPSS

CVE•added 2021/07/15 4:15 p.m.•40 views

CVE-2021-29725

IBM Secure External Authentication Server 2.4.3.2, 6.0.1, 6.0.2 and IBM Secure Proxy 3.4.3.2, 6.0.1, 6.0.2 could allow a remote user to consume resources causing a denial of service due to a resource leak.

7.5CVSS7.3AI score0.02028EPSS

CVE•added 2021/08/30 5:15 p.m.•36 views

CVE-2021-29728

IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 201160.

4.9CVSS5.8AI score0.00088EPSS

CVE•added 2020/07/16 3:15 p.m.•31 views

CVE-2020-4462

IBM Sterling External Authentication Server 6.0.1, 6.0.0, 2.4.3.2, and 2.4.2 and IBM Sterling Secure Proxy 6.0.1, 6.0.0, 3.4.3, and 3.4.2 are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive ...

8.2CVSS8AI score0.00977EPSS

CVE•added 2021/08/30 5:15 p.m.•30 views

CVE-2021-29722

7.5CVSS7.2AI score0.00142EPSS