CVE-2021-20376
published 2021-10-07CVE-2021-20376: IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow an authenticated attacker to enumerate usernames due to there being an observable discrepancy in…
medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow an authenticated attacker to enumerate usernames due to there being an observable discrepancy in returned messages. IBM X-Force ID: 195568.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | sterling_b2b_integrator | 2.2.0.0 – 5.2.6.5_3 | — |
| ibm | sterling_b2b_integrator | 6.0.0.0 – 6.0.3.4 | — |
| ibm | sterling_b2b_integrator | 6.1.0.0 – 6.1.0.1 | — |
| ibm | sterling_file_gateway | — | — |
| ibm | sterling_file_gateway | — | — |
| ibm | sterling_file_gateway | — | — |
| ibm | sterling_file_gateway | — | — |
| ibm | sterling_file_gateway | — | — |
| ibm | sterling_file_gateway | — | — |