IBM Sterling File Gateway
Moderate fix2 remedies
cpe:2.3:a:ibm:sterling_file_gateway:*:*:*:*:*:*:*
Moderate fix2 remedies
- >= 6.0.0.0, <= 6.1.2.6
- >= 6.2.0.0, <= 6.2.0.3
IBM Sterling File Gateway Information Disclosure Vulnerability
Vulnerability
Patched
An information disclosure vulnerability has been identified in the IBM Sterling File Gateway UI versions 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3. This vulnerability could reveal the server's installation path, potentially facilitating further attacks against the system.
Impact
Exploitation of this vulnerability could lead to unauthorized information disclosure, specifically the server's installation path, which could be used to plan additional attacks against the system.
Remediation
Users can upgrade to IBM Sterling File Gateway versions 6.1.2.7 or 6.2.0.4. The version 6.1.2.7 is available on IBM Fix Central, while the container version can be found in the IBM Entitled Registry.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
2.2impact
2.5exploitability
7.6remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.