IBM Planning Analytics Local 2.0 could allow a remote attacker to upload arbitrary files, caused by the improper validation of file extensions. By sending a specially crafted HTTP request, a remote attacker could exploit this vulnerability to upload a malicious script, which could allow the attacker to execute arbitrary code on the vulnerable system. IBM X-Force ID: 265567.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2023-12-22T16:02:54.311Z
Updated: 2024-08-02T19:16:49.662Z
Reserved: 2023-09-06T19:33:10.323Z
Link: CVE-2023-42017
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-12-22T16:15:07.767
Modified: 2023-12-29T18:52:42.137
Link: CVE-2023-42017
Redhat
No data.