Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2014-6222

Опубликовано: 07 июн. 2015
Источник: nvd
CVSS2: 4
EPSS Низкий

Описание

Directory traversal vulnerability in IBM Marketing Operations 7.x and 8.x before 8.5.0.7.2, 8.6.x before 8.6.0.8, 9.0.x before 9.0.0.4.1, 9.1.0.x before 9.1.0.5, and 9.1.1.x before 9.1.1.2 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a URL.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:marketing_operations:7.2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.2.1.12:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.3.2.8:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.4.1.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.4.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.4.2.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.5.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.5.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.5.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.5.3.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.5.3.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.5.3.8:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:7.5.3.9:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.1.0.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.2.0.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.2.0.8:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.2.0.9:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.2.0.10:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.2.0.11:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.2.0.12:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.2.0.13:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.5.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.5.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.5.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.5.0.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.5.0.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.5.0.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.6.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.6.0.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.6.0.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:8.6.0.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.0.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.0.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:marketing_operations:9.1.1.1:*:*:*:*:*:*:*

EPSS

Процентиль: 60%
0.00403
Низкий

4 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

github логотип

GHSA-5c8v-7273-f4pm

github
больше 3 лет назад

Directory traversal vulnerability in IBM Marketing Operations 7.x and 8.x before 8.5.0.7.2, 8.6.x before 8.6.0.8, 9.0.x before 9.0.0.4.1, 9.1.0.x before 9.1.0.5, and 9.1.1.x before 9.1.1.2 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a URL.

EPSS

Процентиль: 60%
0.00403
Низкий

4 Medium

CVSS2

Дефекты

CWE-22