Low Severity

Security Bulletin: Access Control Vulnerability Affects the User Interface of IBM Sterling File Gateway (CVE-2020-4654)

Share this post:

IBM Sterling File Gateway has addressed the access control security vulnerability.

CVE(s): CVE-2020-4654

Affected product(s) and affected version(s):

Affected Product(s) APAR(s) Version(s)
IBM Sterling File Gateway IT35181 2.2.0.0 – 5.2.6.5_3
IBM Sterling File Gateway IT35181 6.0.0.0 – 6.0.3.4
IBM Sterling File Gateway IT35181 6.1.0.0 – 6.1.0.1

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6497245
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/186090

More stories

Security Bulletin: CVE-2021-2341 may affect IBM® SDK, Java™ Technology Edition

Nov 30, 2021 7:04 pm EST | Low Severity

CVE-2021-2341 was disclosed as part of the Oracle July 2021 Critical Patch Update. ...read more


Security Bulletin: Vulnerability in Apache Log4j may affect Cúram Social Program Management (CVE-2020-9488)

Nov 25, 2021 7:01 pm EST | Low Severity

IBM Cúram Social Program Management uses the Apache Log4j libraries, for which there is a publicly known vulnerability. For this vulnerability, Apache Log4j is vulnerable to a man-in-the-middle attack, caused by improper certificate validation with host mismatch in the SMTP appender. ...read more


Security Bulletin: A vulnerability in IBM Java Runtime affects IBM Installation Manager and IBM Packaging Utility

Nov 24, 2021 7:00 pm EST | Low Severity

There is a vulnerability in IBM Runtime Environment Java Version 8 used by IBM Installation Manager and IBM Packaging Utility. The IBM Installation Manager and IBM Packaging Utility have addressed the applicable CVE. ...read more