Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM SOAR QRadar Plugin App directory traversal
Vulnerability Description
IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 260575.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
IBM QRadar SOAR Plug-in 路径遍历漏洞
Vulnerability Description
IBM QRadar SOAR Plug-in是美国国际商业机器(IBM)公司的用于在IBM Security QRadar SIEM 和 QRadar SOAR 之间提供双向信息传输的工具。 IBM QRadar SOAR Plug-in 1.0版本至5.0.3版本存在路径遍历漏洞,该漏洞源于可能允许远程攻击者遍历系统上的目录,攻击者可以发送特制URL请求来查看系统上的任意文件。
CVSS Information
N/A
Vulnerability Type
N/A