CVE-2017-1550
medium
CVSS v3
6.5
CVSS v2
4.0
VIR risk
6.5
Description
IBM Sterling File Gateway 2.2 could allow an authenticated user to change other user's passwords. IBM X-Force ID: 131290.
Predictions
Exploit likelihood
75%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: psirt@us.ibm.com — http://www.ibm.com/support/docview.wss?uid=swg22010758
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| ibm | sterling_file_gateway | 2.2 | |
References
- http://www.ibm.com/support/docview.wss?uid=swg22010758
- http://www.securityfocus.com/bid/102184
- https://exchange.xforce.ibmcloud.com/vulnerabilities/131290
- http://www.ibm.com/support/docview.wss?uid=swg22010758
- http://www.securityfocus.com/bid/102184
- https://exchange.xforce.ibmcloud.com/vulnerabilities/131290
Verify integrity in audit chain (admin only). AS-IS.