Lucene search
HistoryDec 30, 2010 - 7:00 p.m.
CVE-2010-4622
ibm
tivoli access manager
e-business
vulnerability
directory traversal
remote attackers
arbitrary files
uri
nvd
6.7 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.007 Low
EPSS
Percentile
80.2%
Directory traversal vulnerability in WebSEAL in IBM Tivoli Access Manager for e-business 6.1.1 before 6.1.1-TIV-AWS-FP0001 on AIX allows remote attackers to read arbitrary files via a %uff0e%uff0e (encoded dot dot) in a URI.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm:tivoli_access_manager_for_e-business | ibm tivoli access manager for e-business | eq | 6.1.1 |
Related
prion
prion
Directory traversal
2010-12-30 19:00:00
Directory traversal
2011-01-19 12:00:00
cvelist
cvelist
CVE-2010-4622
2010-12-30 18:00:00
CVE-2011-0494
2011-01-19 11:00:00
cve
cve
CVE-2011-0494
2011-01-19 12:00:00
nessus
nessus
IBM Tivoli Access Manager for e-Business WebSEAL Multiple Vulnerabilities
2013-09-26 00:00:00
6.7 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.007 Low
EPSS
Percentile
80.2%
Related for CVE-2010-4622