Unrated severityNVD Advisory· Published Feb 13, 2015· Updated Jun 17, 2026
CVE-2014-6154
CVE-2014-6154
Description
Directory traversal vulnerability in IBM Optim Performance Manager for DB2 4.1.0.1 through 4.1.1 on Linux, UNIX, and Windows and IBM InfoSphere Optim Performance Manager for DB2 5.1 through 5.3.1 on Linux, UNIX, and Windows allows remote attackers to access arbitrary files via a .. (dot dot) in a URL.
Affected products
5cpe:2.3:a:ibm:optim_performance_manager:4.1.1:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:ibm:optim_performance_manager:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:optim_performance_manager:4.1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:optim_performance_manager:5.1.0:*:*:*:*:*:*:*
- (no CPE)range: >=5.1 <=5.3.1
- (no CPE)range: >=4.1.0.1 <=4.1.1
Patches
Vulnerability mechanics
References
2- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/97677nvd
News mentions
0No linked articles in our index yet.