CVE-2015-0171

EUVD-2015-0209
Directory traversal vulnerability in IBM Security SiteProtector System 3.0 before 3.0.0.7, 3.1 before 3.1.0.4, and 3.1.1 before 3.1.1.2 allows remote authenticated users to write to arbitrary files via unspecified vectors.
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:N/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 75%
Affected Products (NVD)
VendorProductVersion
ibmsecurity_siteprotector_system
3.0
ibmsecurity_siteprotector_system
3.0.0.1
ibmsecurity_siteprotector_system
3.0.0.2
ibmsecurity_siteprotector_system
3.0.0.3
ibmsecurity_siteprotector_system
3.0.0.4
ibmsecurity_siteprotector_system
3.0.0.5
ibmsecurity_siteprotector_system
3.0.0.6
ibmsecurity_siteprotector_system
3.1.0.0
ibmsecurity_siteprotector_system
3.1.0.1
ibmsecurity_siteprotector_system
3.1.0.2
ibmsecurity_siteprotector_system
3.1.0.3
ibmsecurity_siteprotector_system
3.1.1.0
ibmsecurity_siteprotector_system
3.1.1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21699470
http://www-01.ibm.com/support/docview.wss?uid=swg21699470