Security Advisory

CVE-2012-2206

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-17 10:00:00

Last updated 2024-08-06 19:26:08

Assigner ibm

State PUBLISHED

Description

The Web Gateway component in IBM WebSphere MQ File Transfer Edition 7.0.4 and earlier allows remote authenticated users to read files of arbitrary users via vectors involving a username in a URI, as demonstrated by a modified metadata=fteSamplesUser field to the /transfer URI.

← Browse all CVEs View on cve.org ↗