Sterling Connect:Direct Web Services — Vulnerabilities & Security Advisories 7

All 7 CVE vulnerabilities found in Sterling Connect:Direct Web Services, with AI-generated Chinese analysis, references, and POCs.

Vendor: IBM

CVE ID	Title	CVSS	Severity	Published
CVE-2024-45651	IBM Sterling Connect:Direct Web Services session fixation CWE-613	6.3	Medium	2025-04-18
CVE-2024-49808	IBM Sterling Connect:Direct Web Services improper authorization CWE-863	6.3	Medium	2025-04-18
CVE-2024-45653	IBM Sterling Connect:Direct Web Services information disclosure CWE-201	4.3	Medium	2025-01-19
CVE-2024-39747	IBM Sterling Connect:Direct Web Services information disclosure CWE-1392	8.1	High	2024-08-31
CVE-2024-39745	IBM Sterling Connect:Direct Web Services information disclosure CWE-327	5.9	Medium	2024-08-22
CVE-2024-39744	IBM Sterling Connect:Direct Web Services cross-site request forgery CWE-352	4.3	Medium	2024-08-22
CVE-2024-39746	IBM Sterling Connect:Direct Web Services information disclosure CWE-319	5.9	Medium	2024-08-22

All 7 known CVE vulnerabilities affecting Sterling Connect:Direct Web Services with full Chinese analysis, references, and POCs where available.