IBM Sterling File Gateway 2.2.0.0 through 6.0.3.1 could allow an authenticated user could manipulate cookie information and remove or add modules from the cookie to access functionality not authorized to. IBM X-Force ID: 175638.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/175638 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/6208038 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2020-05-14 16:15
Updated : 2024-02-04 21:00
NVD link : CVE-2020-4259
Mitre link : CVE-2020-4259
CVE.ORG link : CVE-2020-4259
JSON object : View
Products Affected
ibm
- i
- sterling_file_gateway
- aix
microsoft
- windows
hp
- hp-ux
oracle
- solaris
linux
- linux_kernel
CWE
CWE-276
Incorrect Default Permissions