CVE-2011-0494

IBM Tivoli Access Manager for e-business 5.1-6.1.1 - Path Traversal in WebSEAL

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in WebSEAL in IBM Tivoli Access Manager for e-business 5.1 before 5.1.0.39-TIV-AWS-IF0040, 6.0 before 6.0.0.25-TIV-AWS-IF0026, 6.1.0 before 6.1.0.5-TIV-AWS-IF0006, and 6.1.1 before 6.1.1-TIV-AWS-FP0001 has unspecified impact and attack vectors. NOTE: this might overlap CVE-2010-4622.

References (13)

Core 13
Core References
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24028860
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24028861
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24028829
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42955
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg24025790
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/45836
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ87470
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ91620
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/64737
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ91619
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ87328
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0138
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21459999

Scores

EPSS 0.0214
EPSS Percentile 79.8%

Details

CWE
CWE-22
Status published
Products (9)
ibm/tivoli_access_manager_for_e-business 5.1
ibm/tivoli_access_manager_for_e-business 5.1.0.10
ibm/tivoli_access_manager_for_e-business 6.0.0
ibm/tivoli_access_manager_for_e-business 6.0.0.17
ibm/tivoli_access_manager_for_e-business 6.0.0.23
ibm/tivoli_access_manager_for_e-business 6.1.0
ibm/tivoli_access_manager_for_e-business 6.1.0.3
ibm/tivoli_access_manager_for_e-business 6.1.0.4
ibm/tivoli_access_manager_for_e-business 6.1.1
Published Jan 19, 2011
Tracked Since Feb 18, 2026