CVE-2024-22316

Summary

IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to perform unauthorized actions to another user's data due to improper access controls.

Affected Software

VendorProductVersion RangeStatus
IBMSterling File Gateway6.0.0.0 <= 6.1.2.5affected
IBMSterling File Gateway6.2.0.0 <= 6.2.0.1affected

Weaknesses

  • CWE-863: CWE-863 Incorrect Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References