CVE-2012-0186Path Traversal in IBM Lotus Expeditor

CWE-22Path Traversal4 documents4 sources
Severity
4.3MEDIUMNVD
EPSS
0.1%
top 80.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Lotus Expeditor
Timeline
PublishedJun 22
Latest updateMay 4

Description

Directory traversal vulnerability in the Eclipse Help component in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack allows remote attackers to discover the locations of files via a crafted URL.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDibm/lotus_expeditor6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-c3fg-rx25-mfw6: Directory traversal vulnerability in the Eclipse Help component in IBM Lotus Expeditor 62022-05-04
CVEList
CVE-2012-0186: Directory traversal vulnerability in the Eclipse Help component in IBM Lotus Expeditor 62012-06-22

💥Exploits & PoCs

1
Exploit-DB
NetSarang Xlpd Printer Daemon 4 - Denial of Service2012-02-02
CVE-2012-0186 — Path Traversal in IBM Lotus Expeditor | cvebase