Lucene search
K

5 matches found

NVD
NVD
added 2025/01/25 2:15 p.m.15 views

CVE-2023-38012

IBM Cloud Pak System 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system...

5.3CVSS0.00478EPSS
Exploits0References1
Circl
Circl
added 2025/01/25 1:54 p.m.7 views

CVE-2023-38012

creationtimestamp| type| source ---|---|--- 2025-01-25 13:54:23+00:00| seen| https://infosec.exchange/users/cve/statuses/113889329982951130 2025-01-25 14:05:15+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3078 2025-01-25 17:06:15+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3100...

5.3CVSS6AI score0.00478EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/01/25 1:49 p.m.21 views

CVE-2023-38012 IBM Cloud Pak System directory traversal

IBM Cloud Pak System 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system...

5.3CVSS0.00478EPSS
Exploits0References1
CVE
CVE
added 2025/01/25 1:49 p.m.66 views

CVE-2023-38012

CVE-2023-38012 affects IBM Cloud Pak System versions 2.3.3.6–2.3.4.0. A path traversal flaw allows a remote attacker to view arbitrary system files by crafting URL requests containing "dot dot" sequences (/../). IBM and CVE records cite the impact as directory traversal with CVSS v3.1 base score ...

5.3CVSS5.3AI score0.00478EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/25 1:49 p.m.11 views

CVE-2023-38012 IBM Cloud Pak System directory traversal

IBM Cloud Pak System 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system...

5.3CVSS5.2AI score0.00478EPSS
Exploits0References1
Rows per page
Query Builder