Описание
Directory traversal vulnerability in the client in IBM Rational Software Architect Design Manager and Rhapsody Design Manager 3.x and 4.x before 4.0.5 allows local users to read arbitrary files via vectors involving temporary files.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:rational_software_architect_design_manager:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_software_architect_design_manager:3.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_software_architect_design_manager:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rhapsody_design_manager:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rhapsody_design_manager:3.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rhapsody_design_manager:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rhapsody_design_manager:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rhapsody_design_manager:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rhapsody_design_manager:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rhapsody_design_manager:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rhapsody_design_manager:4.0.4:*:*:*:*:*:*:*
EPSS
Процентиль: 4%
0.00019
Низкий
2.1 Low
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Directory traversal vulnerability in the client in IBM Rational Software Architect Design Manager and Rhapsody Design Manager 3.x and 4.x before 4.0.5 allows local users to read arbitrary files via vectors involving temporary files.
EPSS
Процентиль: 4%
0.00019
Низкий
2.1 Low
CVSS2
Дефекты
CWE-22