CVE-2012-0186
IBM Lotus Expeditor 6.1.x and 6.2.x - Path Traversal via Eclipse Help Component
Title source: llmDescription
Directory traversal vulnerability in the Eclipse Help component in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack allows remote attackers to discover the locations of files via a crafted URL.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21575642
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/72096
Scores
EPSS
0.0158
EPSS Percentile
72.6%
Details
CWE
CWE-22
Status
published
Products (6)
ibm/lotus_expeditor
6.1
ibm/lotus_expeditor
6.1.1
ibm/lotus_expeditor
6.2
ibm/lotus_expeditor
6.2.1
ibm/lotus_expeditor
6.2.2
ibm/lotus_expeditor
6.2.3
Published
Jun 22, 2012
Tracked Since
Feb 18, 2026