← back
CVE-2014-6182

CVE-2014-6182

EPSS 2.1%
Directory traversal vulnerability in an export function in the Process Center in IBM Business Process Manager (BPM) 8.0.x through 8.0.1.3 and 8.5.x through 8.5.5 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a URL.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/98518http://www-01.ibm.com/support/docview.wss?uid=swg1JR51234http://www.ibm.com/support/docview.wss?uid=swg21692540http://www.securitytracker.com/id/1031379