Описание
The server in IBM SPSS Collaboration and Deployment Services 4.x before 4.2.1.3 IF3, 5.x before 5.0 FP3, and 6.x before 6.0 IF1 allows remote attackers to read arbitrary files via an unspecified HTTP request.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.2.1.3:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:5.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:5.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:5.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:5.0.2:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:6.0.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 48%
0.00254
Низкий
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
больше 3 лет назад
The server in IBM SPSS Collaboration and Deployment Services 4.x before 4.2.1.3 IF3, 5.x before 5.0 FP3, and 6.x before 6.0 IF1 allows remote attackers to read arbitrary files via an unspecified HTTP request.
EPSS
Процентиль: 48%
0.00254
Низкий
5 Medium
CVSS2
Дефекты
CWE-200