What is the severity of CVE-2014-6149?

CVE-2014-6149 has been classified with a medium severity level due to its potential impact on data confidentiality.

How do I fix CVE-2014-6149?

To fix CVE-2014-6149, upgrade IBM Tivoli Application Dependency Discovery Manager to a version that is not affected, such as post 7.2.2.2.

Who is affected by CVE-2014-6149?

CVE-2014-6149 affects remote authenticated users of IBM Tivoli Application Dependency Discovery Manager versions 7.2.0.0 through 7.2.2.2.

What types of attacks can CVE-2014-6149 facilitate?

CVE-2014-6149 can facilitate directory traversal attacks, allowing unauthorized access to arbitrary files.

When was CVE-2014-6149 disclosed?

CVE-2014-6149 was disclosed in October 2014.

Vulnerability/
CVE-2014-6149

medium

CWE

29/10/2014

6/8/2024

CVE-2014-6149: Path Traversal

First published: Wed Oct 29 2014(Updated: )

Directory traversal vulnerability in BIRT-viewer in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.0.0 through 7.2.0.10, 7.2.1.0 through 7.2.1.6, and 7.2.2.0 through 7.2.2.2 allows remote authenticated users to read arbitrary files via unspecified vectors.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM Tivoli Application Dependency Discovery Manager	=7.2.0
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.1
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.2
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.3
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.4
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.5
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.6
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.7
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.8
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.9
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.10
IBM Tivoli Application Dependency Discovery Manager	=7.2.1
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.1
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.2
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.3
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.4
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.5
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.6
IBM Tivoli Application Dependency Discovery Manager	=7.2.2
IBM Tivoli Application Dependency Discovery Manager	=7.2.2.1
IBM Tivoli Application Dependency Discovery Manager	=7.2.2.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-6149?
CVE-2014-6149 has been classified with a medium severity level due to its potential impact on data confidentiality.
How do I fix CVE-2014-6149?
To fix CVE-2014-6149, upgrade IBM Tivoli Application Dependency Discovery Manager to a version that is not affected, such as post 7.2.2.2.
Who is affected by CVE-2014-6149?
CVE-2014-6149 affects remote authenticated users of IBM Tivoli Application Dependency Discovery Manager versions 7.2.0.0 through 7.2.2.2.
What types of attacks can CVE-2014-6149 facilitate?
CVE-2014-6149 can facilitate directory traversal attacks, allowing unauthorized access to arbitrary files.
When was CVE-2014-6149 disclosed?
CVE-2014-6149 was disclosed in October 2014.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/severity
agent/last-modified-date
agent/references
agent/tags
agent/first-publish-date
agent/event
agent/description
agent/source
vendor/ibm
canonical/ibm tivoli application dependency discovery manager
version/ibm tivoli application dependency discovery manager/7.2.0
version/ibm tivoli application dependency discovery manager/7.2.0.1
version/ibm tivoli application dependency discovery manager/7.2.0.2
version/ibm tivoli application dependency discovery manager/7.2.0.3
version/ibm tivoli application dependency discovery manager/7.2.0.4
version/ibm tivoli application dependency discovery manager/7.2.0.5
version/ibm tivoli application dependency discovery manager/7.2.0.6
version/ibm tivoli application dependency discovery manager/7.2.0.7
version/ibm tivoli application dependency discovery manager/7.2.0.8
version/ibm tivoli application dependency discovery manager/7.2.0.9
version/ibm tivoli application dependency discovery manager/7.2.0.10
version/ibm tivoli application dependency discovery manager/7.2.1
version/ibm tivoli application dependency discovery manager/7.2.1.1
version/ibm tivoli application dependency discovery manager/7.2.1.2
version/ibm tivoli application dependency discovery manager/7.2.1.3
version/ibm tivoli application dependency discovery manager/7.2.1.4
version/ibm tivoli application dependency discovery manager/7.2.1.5
version/ibm tivoli application dependency discovery manager/7.2.1.6
version/ibm tivoli application dependency discovery manager/7.2.2
version/ibm tivoli application dependency discovery manager/7.2.2.1
version/ibm tivoli application dependency discovery manager/7.2.2.2