Sterling Secure Proxy@6.0.3.0 Security Vulnerabilities and Issues — Sterling Secure Proxy@6.0.3.0 CVE List

Lucene search

IbmSterling Secure Proxy6.0.3.0

3 matches found

CVE•added 2022/02/23 8:15 p.m.•156 views

CVE-2022-22336

IBM Sterling External Authentication Server and IBM Sterling Secure Proxy 6.0.3.0, 6.0.2.0, and 3.4.3.2 could allow a remote user to consume resources causing a denial of service due to a resource leak. IBM X-Force ID: 219395.

7.5CVSS7.3AI score0.0194EPSS

CVE•added 2022/02/23 8:15 p.m.•115 views

CVE-2022-22333

IBM Sterling Secure Proxy 6.0.3.0, 6.0.2.0, and 3.4.3.2 and IBM Sterling External Authentication Server are vulnerable a buffer overflow, due to the Jetty based GUI in the Secure Zone not properly validating the sizes of the form content and/or HTTP headers submitted. A local attacker positioned in...

6.5CVSS6.5AI score0.00648EPSS

CVE•added 2024/11/15 4:15 p.m.•51 views

CVE-2024-41784

IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, and 6.1.0.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot dot" sequences (/.../) to view arbitrary files on the system.

7.5CVSS7.4AI score0.00102EPSS