CVE-2014-6182
published 2014-12-17CVE-2014-6182: Directory traversal vulnerability in an export function in the Process Center in IBM Business Process Manager (BPM) 8.0.x through 8.0.1.3 and 8.5.x through…
medium4CVSS 3.1
AVNACLAuSCPINAN
Directory traversal vulnerability in an export function in the Process Center in IBM Business Process Manager (BPM) 8.0.x through 8.0.1.3 and 8.5.x through 8.5.5 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a URL.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | business_process_manager | — | — |
| ibm | business_process_manager | — | — |
| ibm | business_process_manager | — | — |
| ibm | business_process_manager | — | — |
| ibm | business_process_manager | — | — |
| ibm | business_process_manager | — | — |
| ibm | business_process_manager | — | — |
| ibm | business_process_manager | — | — |