CVE-2023-47159

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Jan 27, 2025

CWE ID 204

Summary

CVE-2023-47159 is a vulnerability affecting IBM Sterling File Gateway versions 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1. An authenticated user can exploit this issue by observing discrepancies in request responses, allowing them to enumerate usernames. This vulnerability poses a potential security risk as it may enable unauthorized access or privilege escalation. IBM strongly recommends users to update their software to the latest version to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Sterling File Gateway

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tNksRN
https://www.cve.org/CVERecord?id=CVE-2023-47159
https://nvd.nist.gov/vuln/detail/CVE-2023-47159

Back to Vulnerability Database