IBM Sterling Connect:Express for Unix 1.5.0

CPE Details

IBM Sterling Connect:Express for Unix 1.5.0
1.5.0
2023-09-28
12h24 +00:00
2023-09-28
12h24 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ibm:sterling_connect\:express_for_unix:1.5.0:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

sterling_connect:express_for_unix

Version

1.5.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-32331 2024-03-04 18h38 +00:00 IBM Connect:Express for UNIX 1.5.0 is vulnerable to a buffer overflow that could allow a remote attacker to cause a denial of service through its browser UI. IBM X-Force ID: 254979.
7.5
High
CVE-2021-38933 2023-07-19 01h22 +00:00 IBM Sterling Connect:Direct for UNIX 1.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 210574.
7.5
High
CVE-2023-29260 2023-07-19 01h17 +00:00 IBM Sterling Connect:Express for UNIX 1.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 252135.
6.5
Medium
CVE-2023-29259 2023-07-19 01h14 +00:00 IBM Sterling Connect:Express for UNIX 1.5 browser UI is vulnerable to attacks that rely on the use of cookies without the SameSite attribute. IBM X-Force ID: 252055.
5.3
Medium