IBM Sterling Partner Engagement Manager is an automation management tool from IBM U.S.A. A server-side request forgery vulnerability exists in IBM Sterling Partner Engagement Manager, which stems from the product’s failure to properly validate user input and could be exploited by an authenticated attacker to send unauthorized requests from the system, which could lead to network enumeration or facilitate other attacks.