February 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Update – New Data Leak Security Flaw ‘GhostRace’ Impacts Modern CPU Architectures
March 19, 2024Rewterz Threat Update – Russian-Backed Anonymous Sudan Targets Alabama with DDoS Attack
March 19, 2024Rewterz Threat Update – New Data Leak Security Flaw ‘GhostRace’ Impacts Modern CPU Architectures
March 19, 2024Rewterz Threat Update – Russian-Backed Anonymous Sudan Targets Alabama with DDoS Attack
March 19, 2024
Severity
Medium
Analysis Summary
CVE-2023-47699 CVSS:6.1
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVE-2023-47162 CVSS:6.1
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVE-2023-47147 CVSS:5.9
BM Sterling Secure Proxy 6.0.3 and 6.1.0 could allow an attacker to overwrite a log message under specific conditions.
CVE-2023-46182 CVSS:5.4
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVE-2023-46181 CVSS:4
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 allows web pages to be stored locally which can be read by another user on the system.
CVE-2023-46179 CVSS:4.3
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can then obtain the cookie value by snooping the traffic.
Impact
- Cross-Site Scripting
- Data Manipulation
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-47699
- CVE-2023-47162
- CVE-2023-47147
- CVE-2023-46182
- CVE-2023-46181
- CVE-2023-46179
Affected Vendors
IBM
Affected Products
- IBM Secure Proxy 6.0.3
- IBM Secure Proxy 6.1.0
Remediation
Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.