VYPR
Unrated severityNVD Advisory· Published Feb 13, 2015· Updated Jun 17, 2026

CVE-2014-6154

CVE-2014-6154

Description

Directory traversal vulnerability in IBM Optim Performance Manager for DB2 4.1.0.1 through 4.1.1 on Linux, UNIX, and Windows and IBM InfoSphere Optim Performance Manager for DB2 5.1 through 5.3.1 on Linux, UNIX, and Windows allows remote attackers to access arbitrary files via a .. (dot dot) in a URL.

Affected products

5
  • cpe:2.3:a:ibm:optim_performance_manager:4.1.1:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:ibm:optim_performance_manager:4.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:optim_performance_manager:4.1.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:optim_performance_manager:5.1.0:*:*:*:*:*:*:*
    • (no CPE)range: >=5.1 <=5.3.1
    • (no CPE)range: >=4.1.0.1 <=4.1.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.