Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sterling secure proxy vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2022-35720
IBM Sterling External Authentication Server 6.1.0 and IBM Sterling Secure Proxy 6.0.3 uses weaker than expected cryptographic algorithms during installation that could allow a local malicious user to decrypt sensitive information. IBM X-Force ID: 231373.
Ibm Sterling External Authentication Server 6.1.0
Ibm Sterling Secure Proxy 6.0.3
7.5
CVSSv3
CVE-2022-34361
IBM Sterling Secure Proxy 6.0.3 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 230522.
Ibm Sterling Secure Proxy 6.0.3
7.5
CVSSv3
CVE-2021-29723
IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-ForceID: 201100.
Ibm Sterling External Authentication Server 2.4.3.2
Ibm Sterling External Authentication Server 6.0.1.0
Ibm Sterling External Authentication Server 6.0.2.0
Ibm Sterling Secure Proxy 3.4.3.2
Ibm Sterling Secure Proxy 6.0.1
Ibm Sterling Secure Proxy 6.0.2
7.5
CVSSv3
CVE-2021-29722
IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 201095.
Ibm Sterling External Authentication Server 2.4.3.2
Ibm Sterling External Authentication Server 6.0.1.0
Ibm Sterling External Authentication Server 6.0.2.0
Ibm Sterling Secure Proxy 3.4.3.2
Ibm Sterling Secure Proxy 6.0.1
Ibm Sterling Secure Proxy 6.0.2
4.9
CVSSv3
CVE-2021-29728
IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: ...
Ibm Sterling External Authentication Server 2.4.3.2
Ibm Sterling External Authentication Server 6.0.1.0
Ibm Sterling External Authentication Server 6.0.2.0
Ibm Sterling Secure Proxy 3.4.3.2
Ibm Sterling Secure Proxy 6.0.1
Ibm Sterling Secure Proxy 6.0.2
4.6
CVSSv3
CVE-2022-34362
IBM Sterling Secure Proxy 6.0.3 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an malicious user to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or ses...
Ibm Sterling Secure Proxy 6.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3