Lucene search
China National Vulnerability DatabaseCNVD-2024-01171HistoryDec 22, 2023 - 12:00 a.m.
IBM Security Guardium Path Traversal Vulnerability (CNVD-2024-0117144)
2023-12-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
ibm security guardium
path traversal
vulnerability
key lifecycle manager
remote attacker
modified files
IBM Security Guardium is a suite of platforms from International Business Machines (IBM) that provide data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. A path traversal vulnerability exists in IBM Security Guardium Key Lifecycle Manager, which stems from a vulnerability that allows a remote attacker to traverse a directory on the system, which could be exploited by an attacker to send a specially crafted URL request to view modified files on the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm ibm security guardium key lifecycle manager >=4.2.0,<4. | eq | 2.0.2 |
Related
cve
cve
CVE-2023-47702
2023-12-20 02:15:43
prion
prion
Code injection
2023-12-20 02:15:00
cvelist
cvelist
nvd
nvd
CVE-2023-47702
2023-12-20 02:15:43
ibm
ibm