CVE-2024-47109

IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3 UI could disclosure the installation path of the server which could aid in further attacks against the system.

Published: Mar 10, 2025
Updated: May 4, 2025
CVE: CVE-2024-47109
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWEs:

CWE-522

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
ibm / sterling_file_gateway	6.0.0.0	6.1.2.7
ibm / sterling_file_gateway	6.2.0.0	6.2.0.4

https://www.ibm.com/support/pages/node/7185259

Vulnerability Database

CVE-2024-47109