CVE-2016-6023: Directory traversal vulnerability in the Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1…

high7.5CVSS 3.0

AVNACLPRNUINSUCHINAN

Directory traversal vulnerability in the Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 allows remote attackers to read arbitrary files via a crafted URL.

Affected

2 ranges

Vendor	Product	Version range	Fixed in
ibm	sterling_secure_proxy	—	—
ibm	sterling_secure_proxy	—	—