IBM Maximo Application Suite 8.10 and 8.11 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 279950.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2024-04-06T11:40:29.742Z
Updated: 2024-08-01T22:43:34.522Z
Reserved: 2024-01-08T23:42:07.732Z
Link: CVE-2024-22328
Vulnrichment
Updated: 2024-08-01T22:43:34.522Z
NVD
Status : Awaiting Analysis
Published: 2024-04-06T12:15:08.090
Modified: 2024-04-08T18:48:40.217
Link: CVE-2024-22328
Redhat
No data.