Integration News

IBM Sterling Secure Proxy is vulnerable due to the use of a weak crypographic algorithm during hashing

Vulnerability Details
CVEID: CVE-2024-38341
Description: IBM Sterling Secure Proxy uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
CWE: CWE-328: Use of Weak Hash
CVSS Source: IBM X-Force
CVSS Base score: 5.9
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

Remediation/Fixes

Product

Affected Version

Fixed-in Version(s)

Remediation

IBM Sterling Secure Proxy

6.0.0.0 - 6.0.3.1

6.0.3.1 iFix 03

IBM Sterling Secure Proxy

6.1.0.0 - 6.1.0.1

6.1.0.1 iFix 03

IBM Sterling Secure Proxy

6.2.0.0 - 6.2.0.1

6.2.0.1 iFix 02

Workarounds and Mitigations

None.

Change History

28 May 2025: Initial Publication

Click the button below to download this newsletter in PDF format.

Download

 

 

home.b2b.solutions
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can offer you the best possible user experience.
Cookie information is stored in your browser and performs functions such as recognizing you when you return to our website or helping our team understand which sections of the website you find most interesting and useful.