Vulnerabilities > IBM > Sterling File Gateway > 6.1.0.5

DATE CVE VULNERABILITY TITLE RISK
2025-01-27 CVE-2023-47159 Response Discrepancy Information Exposure vulnerability in IBM Sterling File Gateway
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to enumerate usernames due to an observable discrepancy in request responses.
network
low complexity
ibm CWE-204
4.3
4.3
2025-01-27 CVE-2023-52292 Cross-site Scripting vulnerability in IBM Sterling File Gateway
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 is vulnerable to stored cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2025-01-27 CVE-2024-22316 Improper Access Control vulnerability in IBM Sterling File Gateway
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to perform unauthorized actions to another user's data due to improper access controls.
network
low complexity
ibm CWE-284
4.3
4.3
2024-04-12 CVE-2023-47714 Unspecified vulnerability in IBM Sterling File Gateway
IBM Sterling File Gateway 6.0.0.0 through 6.0.3.9, 6.1.0.0 through 6.1.2.3, and 6.2.0.0 is vulnerable to cross-site scripting.
network
low complexity
ibm
5.4
5.4