CVE-2014-0918Path Traversal in IBM Websphere Portal

CWE-22Path Traversal3 documents3 sources
Severity
7.1HIGHNVD
EPSS
0.2%
top 59.03%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere Portal
Timeline
PublishedMay 16
Latest updateMay 17

Description

Directory traversal vulnerability in IBM Eclipse Help System (IEHS) in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF27, and 8.0 before 8.0.0.1 CF06 allows remote attackers to read arbitrary files via a crafted URL.

CVSS vector

AV:N/AC:M/C:C/I:N/A:NExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

NVDibm/websphere_portal16 versions+15

🔴Vulnerability Details

2
GHSA
GHSA-6f48-8m4h-mj47: Directory traversal vulnerability in IBM Eclipse Help System (IEHS) in IBM WebSphere Portal 62022-05-17
CVEList
CVE-2014-0918: Directory traversal vulnerability in IBM Eclipse Help System (IEHS) in IBM WebSphere Portal 62014-05-16
CVE-2014-0918 — Path Traversal in IBM Websphere Portal | cvebase