Unrated severityNVD Advisory· Published Sep 28, 2023· Updated Sep 23, 2024
IBM License Metric Tool directory traversal
CVE-2023-43044
Description
IBM License Metric Tool 9.2 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 266893.
Affected products
2=9.2+ 1 more
- (no CPE)range: =9.2
- (no CPE)range: 9.2
Patches
Vulnerability mechanics
References
2- https//www.ibm.com/support/pages/node/7040605mitrevendor-advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/266893mitrevdb-entry
News mentions
0No linked articles in our index yet.