Описание
Directory traversal vulnerability in the Eclipse Help component in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack allows remote attackers to discover the locations of files via a crafted URL.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:lotus_expeditor:6.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_expeditor:6.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_expeditor:6.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_expeditor:6.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_expeditor:6.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_expeditor:6.2.3:*:*:*:*:*:*:*
EPSS
Процентиль: 26%
0.00094
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in the Eclipse Help component in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack allows remote attackers to discover the locations of files via a crafted URL.
EPSS
Процентиль: 26%
0.00094
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-22