CVE-2020-4259
6.5
CVSS:3.0/AV:N/UI:N/S:U/C:N/PR:L/A:N/AC:L/I:H/RC:C/RL:O/E:U
Summary
IBM Sterling File Gateway 2.2.0.0 through 6.0.3.1 could allow an authenticated user could manipulate cookie information and remove or add modules from the cookie to access functionality not authorized to. IBM X-Force ID: 175638.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | Sterling File Gateway | 2.2.0.0 | affected |
| IBM | Sterling File Gateway | 6.0.3.1 | affected |
Weaknesses
- Bypass Security
ADP Enrichment
CVE Program Container
Additional References
- https://www.ibm.com/support/pages/node/6208038
- https://exchange.xforce.ibmcloud.com/vulnerabilities/175638
References
- https://www.ibm.com/support/pages/node/6208038
- https://exchange.xforce.ibmcloud.com/vulnerabilities/175638
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.