VYPR
Unrated severityNVD Advisory· Published Jun 19, 2019· Updated Sep 17, 2024

CVE-2019-4384

CVE-2019-4384

Description

IBM Campaign 9.1.2 and 10.1 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 162172.

Affected products

2
  • IBM/Campaignllm-fuzzy2 versions
    = 9.1.2, = 10.1+ 1 more
    • (no CPE)range: = 9.1.2, = 10.1
    • (no CPE)range: 9.1.2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.