CVE-2024-38341 | THREATINT

Description

IBM Sterling Secure Proxy 6.0.0.0 through 6.0.3.1, 6.1.0.0 through 6.1.0.0, and 6.2.0.0 through 6.2.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

PUBLISHED Reserved 2024-06-13 | Published 2025-05-28 | Updated 2025-08-16 | Assigner ibm

MEDIUM: 5.9CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-328 Use of Weak Hash

Product status

Default status

unaffected

6.0.0.0 (semver)

affected

6.1.0.0 (semver)

affected

6.2.0.0 (semver)

affected

References

www.ibm.com/support/pages/node/7234888 vendor-advisory patch

cve.org (CVE-2024-38341)

nvd.nist.gov (CVE-2024-38341)

Download JSON