Published: 13/08/2020 Updated: 13/08/2020
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8
Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

Vulnerability Summary

IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 167288.

Vulnerability Trend

Github Repositories

CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送

CVE-Flow 1999-2020存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送 Report CVE-Flow:1999-2020年CVE数据分析 CVE-Flow:CVE EXP监控和预测 数据-所有 数据-年度 本日新增EXP ID Description CVE_PubDate EXP_PubDate Source CVE-2007-6716 fs/direct-ioc in the dio subsystem in the Linux kernel before 2623 do