CVE-2017-1544 LOW

CVE-2017-1544

Vendor Ibm
Product Sterling File Gateway
Published July 20, 2018
Last update September 17, 2024

CVSS base score

2.4/10
Attack vector Physical
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.0/A:N/AC:L/AV:P/C:L/I:N/PR:N/S:U/UI:N/E:U/RC:C/RL:O

What the vulnerability does

01Description

IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 through 2.2.6) caches usernames and passwords in browsers that could be used by a local attacker to obtain sensitive information. IBM X-Force ID: 130812.

Key dates

02Disclosure timeline

July 20, 2018 CVE published
September 17, 2024 Record updated