Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3
CVE-2009-1334
- EPSS 5.9%
- Published 17.04.2009 14:30:00
- Last modified 09.04.2025 00:30:58
Cross-site scripting (XSS) vulnerability in login/FilepathLogin.html in IBM Tivoli Continuous Data Protection (CDP) for Files 3.1.4.0 allows remote attackers to inject arbitrary web script or HTML via the reason parameter.
2.1
CVE-2007-5819
- EPSS 0.05%
- Published 05.11.2007 18:46:00
- Last modified 09.04.2025 00:30:58
IBM Tivoli Continuous Data Protection for Files (CDP) 3.1.0 uses weak permissions (unrestricted write) for the Central Admin Global download directory, which allows local users to place arbitrary files into a location used for updating CDP clients.
1