Vulnerability Details CVE-2023-47159
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to enumerate usernames due to an observable discrepancy in request responses.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.4%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2023-47159
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.0.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.0.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.0.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.0.3
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.0.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.1.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.1.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.1.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.2.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.2.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.2.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.5
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.6
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.9
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.0.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.0.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.0.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.0.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.0.5
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.1.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.1.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.1.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.1.3
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.1.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.2.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.2.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.2.3
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.2.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.2.5
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.0.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.0.1