3 matches found
Security Bulletin: File path traversal vulnerability affecting IBM Business Process Manager Process Center (CVE-2014-6182)
Summary An export function in IBM Business Process Manager Process Center is vulnerable to file path traversal. As a result, sensitive files might be downloaded. Vulnerability Details CVE-ID: CVE-2014-6182 Description: IBM Business Process Manager could allow a remote attacker to traverse...
CVE-2014-6182
Directory traversal vulnerability in an export function in the Process Center in IBM Business Process Manager BPM 8.0.x through 8.0.1.3 and 8.5.x through 8.5.5 allows remote authenticated users to read arbitrary files via a .. dot dot in a URL...
CVE-2014-6182
The issue is CVE-2014-6182 affecting IBM Business Process Manager Process Center (BPM) 8.0.x and 8.5.x. A file path traversal vulnerability exists in the export function that lets remote authenticated users read arbitrary files by sending URLs containing dot-dot sequences (../). Affected products...