Published: 07/06/2021 Updated: 10/06/2021
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Vulnerability Summary

IBM WebSphere Application Server Network Deployment 8.5 and 9.0 could allow a remote authenticated malicious user to traverse directories. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to read and delete arbitrary files on the system. IBM X-Force ID: 198435.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ibm websphere application server nd

Github Repositories

Use at your own risk CVE-2021-20517 Exploit Windows Binary PoC /CVE-2021-20517exe will run the exploit /CVE-2021-20517exe Target IP /CVE-2021-20517exe wwwexamplecom Running the exploit on Linux Change the target IP in CVE-2021-20517sh then do: chmod +x CVE-2021-20517sh /CVE-2021-20517sh Target IP /CVE-2021-20517sh wwwexam