← voltar
CVE-2014-6182

CVE-2014-6182

EPSS 2.1%
Directory traversal vulnerability in an export function in the Process Center in IBM Business Process Manager (BPM) 8.0.x through 8.0.1.3 and 8.5.x through 8.5.5 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a URL.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://exchange.xforce.ibmcloud.com/vulnerabilities/98518http://www-01.ibm.com/support/docview.wss?uid=swg1JR51234http://www.ibm.com/support/docview.wss?uid=swg21692540http://www.securitytracker.com/id/1031379