Directory Traversal Vulnerability in IBM Host Firmware for LC-Class Systems
CVE-2021-29695
4.9MEDIUM
Summary
The IBM Host firmware for LC-class Systems is susceptible to directory traversal attacks, which could enable a remote attacker to manipulate file paths. This exploit allows unauthorized deletion of arbitrary files on the affected systems via specially-crafted URL requests, posing a significant risk to system integrity and security.
Affected Version(s)
8335-GCA OP820
8335-GTA OP820
8335-GTB OP820
References
CVSS V3.1
Score:
4.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved