Directory Traversal Vulnerability in IBM Tealeaf Customer Experience
CVE-2015-4988

8.6HIGH

Key Information:

Vendor: IBM
Status: Tealeaf Customer Experience
Vendor: CVE Published:; 18 January 2016

What is CVE-2015-4988?

A directory traversal vulnerability exists in the replay server of IBM Tealeaf Customer Experience, allowing remote attackers to read arbitrary files from the server. This security flaw affects multiple versions of the product, enabling unauthorized file access through unspecified methods, potentially exposing sensitive information. Organizations using affected versions are encouraged to apply relevant patches and updates to mitigate this risk.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21968868

x_refsource_CONFIRM

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 18, 2016
Vulnerability Reserved
Jun 24, 2015