Search Results | AttackerKB

Show filters

Topics 1 Users 0

Clear All

Disclosure Date

Disclosure Year

Disclosure Month

MITRE Tags

Collection

Command and Control

Credential Access

Defense Evasion

Discovery

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Privilege Escalation

1 Total Results

Displaying 1-1 of 1

Attacker Value

Unknown

CVE-2023-38012

Disclosure Date: January 25, 2025 (last updated February 27, 2025)

IBM Cloud Pak System 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.

This site uses cookies for anonymized analytics. For more information or to change your cookie settings, view our Cookie Policy.

1 Total Results

Displaying 1-1 of 1

Unknown

CVE-2023-38012

Quick Cookie Notification