IBM Business Proccess Manager and WebSphere Lombardi Edition are vulnerable to file path traversal. Due to insufficient input parameter validation files can be downloaded by authenticated attackers using specially crafted URLs. CVE(s):...
from IBM Product Security Incident Response Team http://ift.tt/1HblYZj
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.