Unrated severityNVD Advisory· Published Dec 30, 2010· Updated Apr 29, 2026

CVE-2010-4622

Description

Directory traversal vulnerability in WebSEAL in IBM Tivoli Access Manager for e-business 6.1.1 before 6.1.1-TIV-AWS-FP0001 on AIX allows remote attackers to read arbitrary files via a %uff0e%uff0e (encoded dot dot) in a URI.

Affected products

IBM/Tivoli Access Manager For E Business
cpe:2.3:a:ibm:tivoli_access_manager_for_e-business:6.1.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/45582nvdExploit
secunia.com/advisories/42727nvdVendor Advisory
www.vupen.com/english/advisories/2010/3329nvdVendor Advisory
securitytracker.com/idnvd
www-01.ibm.com/support/docview.wssnvd
www.osvdb.org/70158nvd
exchange.xforce.ibmcloud.com/vulnerabilities/64306nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000