Directory Traversal Vulnerability in IBM Optim Performance Manager for DB2
CVE-2014-6154

Currently unrated

Key Information:

Vendor: IBM
Status: Optim Performance Manager
Vendor: CVE Published:; 13 February 2015

Summary

A directory traversal vulnerability in IBM Optim Performance Manager for DB2 allows attackers to gain unauthorized access to files on the server. By manipulating a URL with the '..' (dot dot) sequence, an attacker can traverse the directory structure and potentially access sensitive data. This affects multiple versions of the product across Linux, UNIX, and Windows platforms.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/97677

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21696000

x_refsource_CONFIRM

Timeline

Vulnerability published
Feb 13, 2015
Vulnerability Reserved
Sep 2, 2014