High severity8.0NVD Advisory· Published Dec 22, 2023· Updated Jun 17, 2026
CVE-2023-42017
CVE-2023-42017
Description
IBM Planning Analytics Local 2.0 could allow a remote attacker to upload arbitrary files, caused by the improper validation of file extensions. By sending a specially crafted HTTP request, a remote attacker could exploit this vulnerability to upload a malicious script, which could allow the attacker to execute arbitrary code on the vulnerable system. IBM X-Force ID: 265567.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
22.0+ 1 more
- (no CPE)range: 2.0
- (no CPE)range: 2.0
Patches
Vulnerability mechanics
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/265567nvdVDB EntryVendor Advisory
- www.ibm.com/support/pages/node/7096528nvdVendor Advisory
News mentions
0No linked articles in our index yet.