2 matches found
CVE-2018-1847
The CVE-2018-1847 entry describes a path traversal vulnerability in IBM Financial Transaction Manager for MP. Affected: MP v2.0.0.0–2.0.0.5, v2.1.0.0–2.1.0.4, v2.1.1.0–2.1.1.4, and v3.0.0.0–3.0.0.8. Root cause: Save/Export (OAC) path traversal via specially crafted URLs containing /.. sequences, ...
Security Bulletin: Path Traversal exposure in the Save/Export function of the FTM OAC
Summary The "Save/Export" function available on all search result displays tabulated results is potentially vulnerable to a Path Traversal type attack. Vulnerability Details CVEID: CVE-2018-1847 DESCRIPTION: IBM Financial Transaction Manager FTM for Multi-Platform MP could allow a remote attacker...