ID CVE-2018-1770
Summary IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 148686.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
refmap via4
confirm https://www.ibm.com/support/docview.wss?uid=ibm10729521
misc https://www.tenable.com/security/research/tra-2018-30
sectrack 1041874
xf ibm-websphere-cve20181770-dir-traversal(148686)
Last major update 12-10-2018 - 07:29
Published 12-10-2018 - 07:29
Last modified 16-10-2018 - 06:29
Back to Top