CVE-2017-1497

Опубликовано: 07 дек. 2017

Источник: nvd

CVSS3: 3.7

CVSS2: 4.3

EPSS Низкий

Описание

IBM Sterling File Gateway 2.2 could allow an unauthorized user to view files they should not have access to providing they know the directory location of the file. IBM X-Force ID: 128695.

Ссылки

http://www.ibm.com/support/docview.wss?uid=swg22010738
Issue Tracking
Vendor Advisory
http://www.securityfocus.com/bid/102187
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/128695
Issue Tracking
VDB Entry
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=swg22010738
Issue Tracking
Vendor Advisory
http://www.securityfocus.com/bid/102187
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/128695
Issue Tracking
VDB Entry
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:sterling_file_gateway:2.2:*:*:*:*:*:*:*

EPSS

Процентиль: 40%

0.00186

Низкий

3.7 Low

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-hqmc-6pq9-9x66