Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Security Directory Server path traversal
Vulnerability Description
IBM Security Directory Server 7.2.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view or write to arbitrary files on the system. IBM X-Force ID: 228579.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:H
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
IBM Security Directory Server 路径遍历漏洞
Vulnerability Description
IBM Security Directory Server是美国国际商业机器(IBM)公司的一套使用了轻量级目录访问协议(LDAP)的企业身份管理软件。该软件提供一个可信的身份数据基础架构,用于身份验证。 IBM Security Directory Server 7.2.0版本存在安全漏洞,该漏洞源于允许远程攻击者遍历系统上的目录,攻击者利用该漏洞可以发送特制的 URL 请求,以查看或写入系统上的任意文件。
CVSS Information
N/A
Vulnerability Type
N/A