CVE-2014-0830 — Path Traversal in IBM Financial Transaction Manager

CWE-22 — Path Traversal3 documents3 sources
Severity
4.0MEDIUMNVD
EPSS
0.2%
top 57.62%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Financial Transaction Manager
Timeline
PublishedFeb 1
Latest updateMay 17

Description

Directory traversal vulnerability in the table-export implementation in the OAC component in IBM Financial Transaction Manager (FTM) 2.0 before 2.0.0.3 and 2.1 before 2.1.0.1 allows remote authenticated users to read arbitrary files via a modified pathname.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

â–¶NVDibm/financial_transaction_manager4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-45gq-r5w2-47j7: Directory traversal vulnerability in the table-export implementation in the OAC component in IBM Financial Transaction Manager (FTM) 2↗2022-05-17
â–¶
CVEList
CVE-2014-0830: Directory traversal vulnerability in the table-export implementation in the OAC component in IBM Financial Transaction Manager (FTM) 2↗2014-02-01
â–¶
CVE-2014-0830 — Path Traversal in IBM | cvebase