CVE-2014-0918
Directory traversal vulnerability in IBM Eclipse Help System (IEHS) in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF27, and 8.0 before 8.0.0.1 CF06 allows remote attackers to read arbitrary files via a crafted URL.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0016 (0.2%)
Percentile: 36.5%
EPSS: 2026-05-06
Affects
ibm:websphere_portalTechnical description
Directory traversal vulnerability in IBM Eclipse Help System (IEHS) in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF27, and 8.0 before 8.0.0.1 CF06 allows remote attackers to read arbitrary files via a crafted URL.
Published: 5/16/2014, 11:12:00 AM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI14125
- http://www-01.ibm.com/support/docview.wss?uid=swg21670753
- http://www.securityfocus.com/bid/67340
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91980
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI14125
- http://www-01.ibm.com/support/docview.wss?uid=swg21670753
- http://www.securityfocus.com/bid/67340
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91980