Directory traversal

2014-12-2411:59:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.7%

JSON

Multiple directory traversal vulnerabilities in the ServiceRegistry UI in IBM WebSphere Service Registry and Repository (WSRR) 7.5.x through 7.5.0.4, 8.0.x before 8.0.0.3, and 8.5.x before 8.5.0.1 allow remote authenticated users to read arbitrary files via unspecified vectors.

CPENameOperatorVersion
websphere_service_registry_and_repositoryeq7.5.0.4
websphere_service_registry_and_repositoryeq7.5.0.1
websphere_service_registry_and_repositoryeq7.5.0.2
websphere_service_registry_and_repositoryeq8.0
websphere_service_registry_and_repositoryeq7.5.0.0
websphere_service_registry_and_repositoryeq7.5.0.3
websphere_service_registry_and_repositoryeq8.0.0.1
websphere_service_registry_and_repositoryeq8.5
websphere_service_registry_and_repositoryeq8.0.0.2

Name	Operator	Version
websphere_service_registry_and_repository	eq	7.5.0.4
websphere_service_registry_and_repository	eq	7.5.0.1
websphere_service_registry_and_repository	eq	7.5.0.2
websphere_service_registry_and_repository	eq	8.0
websphere_service_registry_and_repository	eq	7.5.0.0
websphere_service_registry_and_repository	eq	7.5.0.3
websphere_service_registry_and_repository	eq	8.0.0.1
websphere_service_registry_and_repository	eq	8.5
websphere_service_registry_and_repository	eq	8.0.0.2