CPE-14462873-EBE6-45E6-9F9C-E2938C82618C Detail

CPE Details

IBM Sterling Secure Proxy 6.0.2

Vendor

ibm

Product

sterling_secure_proxy

Version

6.0.2

Created

2021-08-31
14h38 +00:00

Modified

2024-03-19
16h10 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:ibm:sterling_secure_proxy:6.0.2:::::::*

Informations

Vendor

ibm

Product

sterling_secure_proxy

Version

6.0.2

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2022-22336	2022-02-23 19h45 +00:00	IBM Sterling External Authentication Server and IBM Sterling Secure Proxy 6.0.3.0, 6.0.2.0, and 3.4.3.2 could allow a remote user to consume resources causing a denial of service due to a resource leak. IBM X-Force ID: 219395.	7.5	High
CVE-2022-22333	2022-02-23 19h45 +00:00	IBM Sterling Secure Proxy 6.0.3.0, 6.0.2.0, and 3.4.3.2 and IBM Sterling External Authentication Server are vulnerable a buffer overflow, due to the Jetty based GUI in the Secure Zone not properly validating the sizes of the form content and/or HTTP headers submitted. A local attacker positioned inside the Secure Zone could submit a specially crafted HTTP request to disrupt service. IBM X-Force ID: 219133.	6.5	Medium
CVE-2021-29728	2021-08-30 17h00 +00:00	IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 201160.	4.9	Medium
CVE-2021-29723	2021-08-30 17h00 +00:00	IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-ForceID: 201100.	7.5	High
CVE-2021-29722	2021-08-30 17h00 +00:00	IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 201095.	7.5	High
CVE-2021-29749	2021-07-15 16h00 +00:00	IBM Secure External Authentication Server 6.0.2 and IBM Secure Proxy 6.0.2 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 201777.	5.4	Medium
CVE-2021-29725	2021-07-15 16h00 +00:00	IBM Secure External Authentication Server 2.4.3.2, 6.0.1, 6.0.2 and IBM Secure Proxy 3.4.3.2, 6.0.1, 6.0.2 could allow a remote user to consume resources causing a denial of service due to a resource leak.	7.5	High

IBM Sterling Secure Proxy 6.0.2

CPE Details

CPE Name: cpe:2.3:a:ibm:sterling_secure_proxy:6.0.2:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:ibm:sterling_secure_proxy:6.0.2:::::::*