Secure External Authentication Server

secure_external_authentication_server

Vendor: Ibm • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-29726 1Ibm 2Secure External Authentication Server Sterling Secure Proxy Nov 21, 2024 May 17, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 IBM Sterling Secure Proxy 6.0.3 and IBM Secure External Authentication Server 6.0.3 does not properly ensure that a certificate is actually associated with the host due to improper validation of certificates. IBM X-Force...Show more IBM Sterling Secure Proxy 6.0.3 and IBM Secure External Authentication Server 6.0.3 does not properly ensure that a certificate is actually associated with the host due to improper validation of certificates. IBM X-Force ID: 201104.Show less
CVE-2021-29749 1Ibm 2Secure External Authentication Server Sterling Secure Proxy Nov 21, 2024 Jul 15, 2021 N/A· v4 5.4 MEDIUM· v3 5.5 MEDIUM· v2 IBM Secure External Authentication Server 6.0.2 and IBM Secure Proxy 6.0.2 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, pote...Show more IBM Secure External Authentication Server 6.0.2 and IBM Secure Proxy 6.0.2 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 201777.Show less
CVE-2021-29725 1Ibm 2Secure External Authentication Server Sterling Secure Proxy Nov 21, 2024 Jul 15, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 IBM Secure External Authentication Server 2.4.3.2, 6.0.1, 6.0.2 and IBM Secure Proxy 3.4.3.2, 6.0.1, 6.0.2 could allow a remote user to consume resources causing a denial of service due to a resource leak.