PT-2021-18449 · Ibm · Ibm Secure External Authentication Server+1
Published
2021-07-15
·
Updated
2024-03-19
·
CVE-2021-29749
CVSS v2.0
5.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Secure External Authentication Server version 6.0.2
IBM Secure Proxy version 6.0.2
Description
The issue allows an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.
Recommendations
For IBM Secure External Authentication Server version 6.0.2, update to a version that addresses the server-side request forgery issue.
For IBM Secure Proxy version 6.0.2, update to a version that addresses the server-side request forgery issue.
Fix
SSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Secure External Authentication Server
Ibm Secure Proxy