CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2014-6154
https://notcve.org/view.php?id=CVE-2014-6154
Directory traversal vulnerability in IBM Optim Performance Manager for DB2 4.1.0.1 through 4.1.1 on Linux, UNIX, and Windows and IBM InfoSphere Optim Performance Manager for DB2 5.1 through 5.3.1 on Linux, UNIX, and Windows allows remote attackers to access arbitrary files via a .. (dot dot) in a URL. Vulnerabilidad de salto de directorio en IBM Optim Performance Manager para DB2 4.1.0.1 hasta 4.1.1 en Linux, UNIX, y Windows e IBM InfoSphere Optim Performance Manager para DB2 5.1 hasta 5.3.1 en Linux, UNIX, y Windows permite a atacantes remotos acceder a ficheros arbitrarios a través de un .. (punto punto) en una URL. • http://www-01.ibm.com/support/docview.wss?uid=swg21696000 https://exchange.xforce.ibmcloud.com/vulnerabilities/97677 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 4.0EPSS: 0%CPEs: 4EXPL: 0CVE-2013-2979
https://notcve.org/view.php?id=CVE-2013-2979
Directory traversal vulnerability in IBM Optim Performance Manager 4.1.1 and IBM InfoSphere Optim Performance Manager 5.x before 5.2 allows remote authenticated users to read arbitrary files via a crafted URL. Vulnerabilidad de salto de directorio en IBM Optim Performance Manager 4.1.1 e IBM InfoSphere Optim Performance Manager 5.x anterior a 5.2 permite a usuarios autenticados remotamente leer archivos arbitrarios a través de una URL manipulada. • http://www-01.ibm.com/support/docview.wss?uid=swg21647415 https://exchange.xforce.ibmcloud.com/vulnerabilities/83972 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •