Описание
IBM Planning Analytics Workspace 2.0 could be vulnerable to malicious file upload by not validating the file types or sizes. Attackers can make use of this weakness and upload malicious executable files into the system and it can be sent to victim for performing further attacks. IBM X-Force ID: 214025.
Ссылки
- VDB EntryVendor Advisory
- Vendor Advisory
- VDB EntryVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:ibm:planning_analytics_workspace:2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 39%
0.00177
Низкий
6.3 Medium
CVSS3
8 High
CVSS3
6 Medium
CVSS2
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 8
github
почти 4 года назад
IBM Planning Analytics Workspace 2.0 could be vulnerable to malicious file upload by not validating the file types or sizes. Attackers can make use of this weakness and upload malicious executable files into the system and it can be sent to victim for performing further attacks. IBM X-Force ID: 214025.
EPSS
Процентиль: 39%
0.00177
Низкий
6.3 Medium
CVSS3
8 High
CVSS3
6 Medium
CVSS2
Дефекты
CWE-434