CVE-2023-47162 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-47162 PUBLISHED CVSS 6.099999904632568 MEDIUM

IBM Sterling Secure Proxy 6.0.3 and 6.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 270973.

EPSS 0.15% · 35.7th percentile

Risk Scores

CVSS v3.1

6.099999904632568

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS Score

0.15%

35.7th percentile

Affected Products

Vendor	Product	Versions
ibm	sterling_secure_proxy	6.0.3, 6.1.0
IBM	Secure Proxy	6.0.3, 6.1.0

Timeline

Mar 15, 2024 CVE Published
Mar 16, 2024 EPSS Score
Apr 10, 2024 EPSS Score
May 6, 2024 EPSS Score
May 31, 2024 EPSS Score
Jun 26, 2024 EPSS Score
Jul 21, 2024 EPSS Score
Aug 16, 2024 EPSS Score
Sep 10, 2024 EPSS Score
Oct 6, 2024 EPSS Score
Oct 31, 2024 EPSS Score
Nov 25, 2024 EPSS Score

References

https://www.ibm.com/support/pages/node/7142007 advisory
https://www.ibm.com/support/pages/node/7142038 advisory
https://www.ibm.com/support/pages/node/7138527 advisory
https://www.ibm.com/support/pages/node/7138509 advisory
https://www.ibm.com/support/pages/node/7140420 advisory
https://www.ibm.com/support/pages/node/7138477 advisory
https://www.ibm.com/support/pages/node/7142032 advisory
https://www.ibm.com/support/pages/node/7138522 advisory
https://www.ibm.com/support/pages/node/7137248 advisory
https://www.ibm.com/support/pages/node/7137258 advisory
https://www.ibm.com/support/pages/node/7138503 advisory
https://www.ibm.com/support/pages/node/7142006 advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/270973 vdb
https://nvd.nist.gov/vuln/detail/CVE-2023-47162 advisory

Open in Interactive Console →