Ibm: >> License Metric Tool >> 9.2.2 Security Vulnerabilities
IBM License Metric Tool 9.2 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 266893.
CVSS Score
5.3
EPSS Score
0.001
Published
2023-09-28
IBM BigFix Inventory v9 9.2 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 118853.
CVSS Score
9.8
EPSS Score
0.024
Published
2017-07-13