CNNVD-202601-3260 Information

CNNVD ID

CNNVD-202601-3260

Related CVE

CVE-2025-14115

• CNNVD Published: 2026-01-20

Description (Chinese)

IBM Sterling Connect:Direct for UNIX Container是美国国际商业机器（IBM）公司的一个安全文件传输工具。 IBM Sterling Connect:Direct for UNIX Container 6.3.0.0版本至6.3.0.6 Interim Fix 016版本和6.4.0.0版本至6.4.0.3 Interim Fix 019版本存在信任管理问题漏洞，该漏洞源于使用硬编码凭据，可能导致身份验证或通信风险。

Description (English)

IBM Sterling Connect: Direct for UNIX Contractor is a secure file transfer tool for IBM. IBM Strategy: Direct for UNIX Contact 6.3.0.0 to 6.3.06 Interim Fix 016 and 6.4.0.0 to 6.4.0.3 Interim Fix 019 has a trust management management gap, which arises from the use of hard-coded documents, which may lead to identification or communication risks.

Hazard Level

Medium

Vulnerability Type

信任管理问题

Affected Vendor

国际商业机器

Published

2026-01-20

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7257143

Patch

https://www.ibm.com/support/pages/node/7257143