Insufficient Permission Checking in IBM Sterling File Gateway
CVE-2021-20372
4.3MEDIUM
What is CVE-2021-20372?
IBM Sterling File Gateway versions 2.2.0.0 through 6.1.1.0 are susceptible to a denial-of-service scenario that allows authenticated remote users to disrupt the service of other users. This vulnerability arises due to inadequate permission verification, raising concerns about user data accessibility and service reliability. Ensuring proper permission checks and implementing suitable security measures is crucial to mitigate potential service interruptions.
Affected Version(s)
Sterling File Gateway 2.2.0.0
Sterling File Gateway 6.0.1.0
Sterling File Gateway 6.0.0.0