Directory Traversal Vulnerability in IBM Optim Performance Manager and InfoSphere
CVE-2013-2979

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Optim Performance Manager; Optim Performance Manager
Vendor: CVE Published:; 22 August 2013

Summary

A directory traversal vulnerability exists in IBM Optim Performance Manager versions 4.1.1 and InfoSphere Optim Performance Manager versions 5.x prior to 5.2. This flaw enables remote authenticated users to exploit crafted URLs to gain unauthorized access to sensitive files on the server. As a result, an attacker could potentially read arbitrary files, which may lead to the exposure of confidential information.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21647415

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/83972

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Aug 22, 2013
Vulnerability Reserved
Apr 12, 2013