Описание
IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could be vulnerable to malicious file upload by not validating the type of file uploaded to Explore Content. Attackers can make use of this weakness and upload malicious executable files into the system, and it can be sent to victim for performing further attacks.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
EPSS
6.8 Medium
CVSS3
9.8 Critical
CVSS3
Дефекты
Связанные уязвимости
IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could be vulnerable to malicious file upload by not validating the type of file uploaded to Explore Content. Attackers can make use of this weakness and upload malicious executable files into the system, and it can be sent to victim for performing further attacks.
Уязвимость программного обеспечения для получения доступа к инструментам аналитики и планирования IBM Analytics Content Hub, связанная с неограниченной загрузкой файлов опасного типа, позволяющая нарушителю загружать произвольные файлы
EPSS
6.8 Medium
CVSS3
9.8 Critical
CVSS3