CVE-2015-0171

CWE-22Path Traversal4 documents4 sources
Severity
5.5MEDIUM
EPSS
0.7%
top 28.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Security Siteprotector System
Timeline
PublishedMay 25
Latest updateMay 17

Description

Directory traversal vulnerability in IBM Security SiteProtector System 3.0 before 3.0.0.7, 3.1 before 3.1.0.4, and 3.1.1 before 3.1.1.2 allows remote authenticated users to write to arbitrary files via unspecified vectors.

CVSS vector

AV:N/AC:L/C:N/I:P/A:PExploitability: 8.0 | Impact: 4.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-qvwp-g584-6r6w: Directory traversal vulnerability in IBM Security SiteProtector System 32022-05-17
CVEList
CVE-2015-0171: Directory traversal vulnerability in IBM Security SiteProtector System 32015-05-25

💬Community

1
Bugzilla
CVE-2014-0171 Odata4j: XML eXternal Entity (XXE) flaw2014-04-08
CVE-2015-0171 (MEDIUM CVSS 5.5) | Directory traversal vulnerability i | cvebase.io