Описание
The charting component in IBM WebSphere Dashboard Framework (WDF) 6.1.5 and 7.0.1 allows remote attackers to view or delete image files by leveraging incorrect security constraints for a temporary directory.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:websphere_dashboard_framework:6.1.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_dashboard_framework:7.0.1:*:*:*:*:*:*:*
EPSS
Процентиль: 49%
0.00256
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
The charting component in IBM WebSphere Dashboard Framework (WDF) 6.1.5 and 7.0.1 allows remote attackers to view or delete image files by leveraging incorrect security constraints for a temporary directory.
EPSS
Процентиль: 49%
0.00256
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-264