CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2014-6154
https://notcve.org/view.php?id=CVE-2014-6154
Directory traversal vulnerability in IBM Optim Performance Manager for DB2 4.1.0.1 through 4.1.1 on Linux, UNIX, and Windows and IBM InfoSphere Optim Performance Manager for DB2 5.1 through 5.3.1 on Linux, UNIX, and Windows allows remote attackers to access arbitrary files via a .. (dot dot) in a URL. Vulnerabilidad de salto de directorio en IBM Optim Performance Manager para DB2 4.1.0.1 hasta 4.1.1 en Linux, UNIX, y Windows e IBM InfoSphere Optim Performance Manager para DB2 5.1 hasta 5.3.1 en Linux, UNIX, y Windows permite a atacantes remotos acceder a ficheros arbitrarios a través de un .. (punto punto) en una URL. • http://www-01.ibm.com/support/docview.wss?uid=swg21696000 https://exchange.xforce.ibmcloud.com/vulnerabilities/97677 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •