IBM Security Verify Governance, Identity Manager 10.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 257772.
Metrics
Affected Vendors & Products
References
History
Fri, 11 Oct 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2023-07-31T00:29:37.729Z
Updated: 2024-10-11T19:11:23.390Z
Reserved: 2023-06-11T20:38:21.241Z
Link: CVE-2023-35016
Vulnrichment
Updated: 2024-08-02T16:17:04.315Z
NVD
Status : Analyzed
Published: 2023-07-31T01:15:09.667
Modified: 2023-08-04T17:23:18.223
Link: CVE-2023-35016
Redhat
No data.