Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Secure_external_authentication_server
(Ibm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-07-15 | CVE-2021-29725 | IBM Secure External Authentication Server 2.4.3.2, 6.0.1, 6.0.2 and IBM Secure Proxy 3.4.3.2, 6.0.1, 6.0.2 could allow a remote user to consume resources causing a denial of service due to a resource leak. | Secure_external_authentication_server, Sterling_secure_proxy | 7.5 | ||
| 2021-07-15 | CVE-2021-29749 | IBM Secure External Authentication Server 6.0.2 and IBM Secure Proxy 6.0.2 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 201777. | Secure_external_authentication_server, Sterling_secure_proxy | 5.4 | ||
| 2022-05-17 | CVE-2021-29726 | IBM Sterling Secure Proxy 6.0.3 and IBM Secure External Authentication Server 6.0.3 does not properly ensure that a certificate is actually associated with the host due to improper validation of certificates. IBM X-Force ID: 201104. | Secure_external_authentication_server, Sterling_secure_proxy | 5.3 |