Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM webMethods Integration directory traversal
Vulnerability Description
IBM webMethods Integration 10.15 could allow an authenticated user to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
IBM webMethods Integration 路径遍历漏洞
Vulnerability Description
IBM webMethods Integration是美国国际商业机器(IBM)公司的一个混合的企业 iPaaS。 IBM webMethods Integration 10.15版本存在路径遍历漏洞,该漏洞源于可能允许经过身份验证的用户遍历系统上的目录,攻击者可以发送特制URL请求来查看系统上的任意文件。
CVSS Information
N/A
Vulnerability Type
N/A