Vulnerability Details CVE-2023-47159
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to enumerate usernames due to an observable discrepancy in request responses.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.3%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2023-47159
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.0.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.0.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.0.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.0.3
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.0.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.1.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.1.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.1.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.2.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.2.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.2.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.5
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.6
-
cpe:2.3:a:ibm:sterling_file_gateway:6.0.3.9
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.0.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.0.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.0.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.0.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.0.5
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.1.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.1.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.1.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.1.3
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.1.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.2.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.2.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.2.3
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.2.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.1.2.5
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.0.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.0.1