IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow an authenticated attacker to enumerate usernames due to there being an observable discrepancy in returned messages. IBM X-Force ID: 195568.
References
Link | Resource |
---|---|
https://www.ibm.com/support/pages/node/6496789 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/195568 | VDB Entry Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2021-10-07 11:15
Updated : 2022-05-03 09:04
NVD link : CVE-2021-20376
Mitre link : CVE-2021-20376
JSON object : View
CWE
CWE-203
Observable Discrepancy
Products Affected
ibm
- sterling_b2b_integrator