CVE-2024-49780 | IBM OpenPages with Watson 8.3/9.0 HTTP Request file name path traversal

Inserito da Angelo Barbosa | Feb 20, 2025 | CVE

A vulnerability was found in IBM OpenPages with Watson 8.3/9.0. It has been declared as critical. This vulnerability affects unknown code of the component HTTP Request Handler. The manipulation of the argument file name leads to path traversal.

This vulnerability was named CVE-2024-49780. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49780 | IBM OpenPages with Watson 8.3/9.0 HTTP Request file name path traversal

Post correlati

CVE-2024-38834 | VMware Aria Operations up to 8.18.1 cross site scripting (VMSA-2024-0022)

CVE-2022-36763 | TianoCore EDK2 up to 202311 Tcg2MeasureGptTable heap-based overflow (GHSA-xvv8-66cq-prwr)

CVE-2024-23524 | ONTRAPORT PilotPress Plugin up to 2.0.30 on WordPress authorization

CVE-2024-39688 | FishAudio Bert-VITS2 up to 2.3 /config/config.json generate_config data_dir path traversal (GHSL-2024-045)