VYPR
Unrated severityNVD Advisory· Published Sep 28, 2023· Updated Sep 23, 2024

IBM License Metric Tool directory traversal

CVE-2023-43044

Description

IBM License Metric Tool 9.2 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 266893.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.