First published: Mon May 16 2022(Updated: )
IBM Sterling Secure Proxy 6.0.3 and IBM Secure External Authentication Server 6.0.3 does not properly ensure that a certificate is actually associated with the host due to improper validation of certificates. IBM X-Force ID: 201104.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Secure External Authentication Server | =6.0.3 | |
IBM Sterling Secure Proxy | =6.0.3 | |
<=6.0.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-29726 is a vulnerability in IBM Sterling Secure Proxy and IBM Secure External Authentication Server 6.0.3 that allows improper validation of certificates, potentially leading to certificate spoofing attacks.
CVE-2021-29726 has a severity rating of 5.3 (Medium).
IBM Sterling Secure Proxy 6.0.3 and IBM Secure External Authentication Server 6.0.3 are affected by CVE-2021-29726.
To fix CVE-2021-29726, apply the necessary patches or updates provided by IBM.
You can find more information about CVE-2021-29726 on the IBM X-Force Exchange website and the IBM support pages.