PT-2018-12671 · Ibm · Ibm Sterling File Gateway

Published

2018-07-20

Updated

2019-10-09

CVE-2018-1470

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Sterling File Gateway versions 2.2.0 through 2.2.6

Description The issue allows a remote authenticated attacker to obtain sensitive information displayed in the URL, which could lead to further attacks against the system.

Recommendations For IBM Sterling File Gateway versions 2.2.0 through 2.2.6, update to a version that contains a fix for this issue to prevent a remote authenticated attacker from obtaining sensitive information.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2018-1470

Affected Products

Ibm Sterling File Gateway

PT-2018-12671 · Ibm · Ibm Sterling File Gateway

CVE-2018-1470

Weakness Enumeration

Related Identifiers

Affected Products

References · 5