1 results (0.002 seconds)
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-56477 – IBM Power Hardware Management Console directory traversal
https://notcve.org/view.php?id=CVE-2024-56477
14 Feb 2025 — IBM Power Hardware Management Console V10.3.1050.0 could allow an authenticated user to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. • https://www.ibm.com/support/pages/node/7183224 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •