Lucene search
K

117 matches found

CNNVD
CNNVD
added 2024/03/21 12:0 a.m.6 views

Delta Electronics DIAEnergie 路径遍历漏洞

Delta Electronics DIAEnergie is an industrial energy management system from Delta Electronics, Taiwan, China, for monitoring and analyzing energy consumption in real time, calculating energy consumption and load characteristics, optimizing equipment performance, improving production processes and...

8.1CVSS7AI score0.00646EPSS
Exploits0References3
NVD
NVD
added 2024/03/01 3:15 a.m.24 views

CVE-2023-38366

IBM Filenet Content Manager Component 5.5.8.0, 5.5.10.0, and 5.5.11.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system. IBM X-Force ID: 261115...

5.3CVSS5.2AI score0.00754EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/01 12:0 a.m.5 views

IBM QRadar SOAR Plug-in 路径遍历漏洞

The IBM SOAR QRadar Plugin is a tool from International Business Machines IBM used to provide bi-directional messaging between IBM Security QRadar SIEM and QRadar SOAR. The IBM SOAR QRadar Plugin App suffers from a directory traversal vulnerability that could be exploited by an attacker to send a...

8.1CVSS6.7AI score0.01019EPSS
Exploits0References4
OSV
OSV
added 2024/01/19 1:15 a.m.6 views

CVE-2023-35020

IBM Sterling Control Center 6.3.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system. IBM X-Force ID: 257874...

5.3CVSS5.9AI score0.00537EPSS
Exploits0References2
NVD
NVD
added 2023/12/20 2:15 a.m.17 views

CVE-2023-47702

IBM Security Guardium Key Lifecycle Manager 4.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view modify files on the system. IBM X-Force ID: 271196...

9.1CVSS0.00975EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/12/20 1:11 a.m.20 views

CVE-2023-47702 IBM Security Guardium Key Lifecycle Manager directory traversal

IBM Security Guardium Key Lifecycle Manager 4.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view modify files on the system. IBM X-Force ID: 271196...

4.3CVSS8.6AI score0.00975EPSS
Exploits0References2
OSV
OSV
added 2023/09/28 6:15 p.m.3 views

CVE-2023-43044

IBM License Metric Tool 9.2 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system. IBM X-Force ID: 266893...

7.5CVSS5.9AI score0.00816EPSS
Exploits0References2
NVD
NVD
added 2023/09/08 8:15 p.m.16 views

CVE-2022-33164

IBM Security Directory Server 7.2.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view or write to arbitrary files on the system. IBM X-Force ID: 228579...

9.1CVSS8.7AI score0.01476EPSS
Exploits0References2
CVE
CVE
added 2023/09/08 7:58 p.m.70 views

CVE-2022-33164

CVE-2022-33164 affects IBM Security Directory Server (7.2.0). A remote attacker could exploit a path traversal via /.. to view or write arbitrary files. IBM bulletin cites CVSS base 8.7 (CVE-2022-33164) and provides remediation: IBM Security Directory Server 6.4.0 interim fix 28, IBM Security Dir...

9.1CVSS8.7AI score0.01476EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/07/31 1:15 a.m.6 views

CVE-2023-35016

IBM Security Verify Governance, Identity Manager 10.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system. IBM X-Force ID: 257772...

6.5CVSS5.9AI score0.00946EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/31 12:0 a.m.8 views

PT-2023-25096 · Ibm · Ibm Security Verify Governance

Name of the Vulnerable Software and Affected Versions: IBM Security Verify Governance, Identity Manager version 10.0 Description: The issue allows a remote attacker to traverse directories on the system by sending a specially crafted URL request containing "dot dot" sequences /../ to view arbitra...

6.5CVSS6.3AI score0.00946EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/06/07 2:8 a.m.5 views

golang: path/filepath: path-filepath filepath.Clean path traversal

A flaw was found in Go, where it could allow a remote attacker to traverse directories on the system, caused by improper validation of user requests by the filepath.Clean on Windows package. This flaw allows an attacker to send a specially-crafted URL request containing "dot dot" sequences /../ t...

7.5CVSS7AI score0.01678EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/18 12:14 a.m.7 views

golang: path/filepath: path-filepath filepath.Clean path traversal

A flaw was found in Go, where it could allow a remote attacker to traverse directories on the system, caused by improper validation of user requests by the filepath.Clean on Windows package. This flaw allows an attacker to send a specially-crafted URL request containing "dot dot" sequences /../ t...

7.5CVSS7AI score0.01678EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/03/01 12:0 a.m.5 views

PT-2023-11912 · Ibm · Ibm Financial Transaction Manager

Name of the Vulnerable Software and Affected Versions: IBM Financial Transaction Manager versions 3.2.0 through 3.2.7 Description: The issue allows a remote attacker to traverse directories on the system by sending a specially-crafted URL request containing "dot dot" sequences /../ to view...

7.5CVSS6.8AI score0.01019EPSS
Exploits0References6
OSV
OSV
added 2023/02/17 7:15 p.m.6 views

CVE-2023-24960

IBM InfoSphere Information Server 11.7 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system. IBM X-Force ID: 246333...

7.5CVSS7.3AI score0.01406EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:18 a.m.4 views

SUSE CVE-2005-1918

The original patch for a GNU tar directory traversal vulnerability CVE-2002-0399 in Red Hat Enterprise Linux 3 and 2.1 uses an "incorrect optimization" that allows user-assisted attackers to overwrite arbitrary files via a crafted tar file, probably involving "/../" sequences with a leading "/"...

2.6CVSS7AI score0.02862EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:13 a.m.6 views

SUSE CVE-2007-0450

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules modproxy, modrewrite, modjk, allows remote attackers to read arbitrary files via a .. dot dot sequence with combinations of 1 "/" slash, 2 "" backslash, and...

5CVSS6.9AI score0.90768EPSS
Exploits2References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:12 a.m.3 views

SUSE CVE-2007-1384

Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.2 allows remote attackers to overwrite arbitrary files via ".." sequences in a torrent filename...

6.4CVSS7.1AI score0.02483EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:11 a.m.3 views

SUSE CVE-2007-4131

Directory traversal vulnerability in the containsdotdot function in src/names.c in GNU tar allows user-assisted remote attackers to overwrite arbitrary files via certain //.. slash slash dot dot sequences in directory symlinks in a TAR archive...

6.8CVSS7.1AI score0.02743EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:10 a.m.3 views

SUSE CVE-2007-5742

Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown vectors...

9CVSS7AI score0.02835EPSS
Exploits0References3
Rows per page
Query Builder