IBM.Data.Risk.Manager.fetchLogFiles.Arbitrary.File.Download
Description
This indicates an attack attempt to exploit an Information Disclosure Vulnerability in IBM Data Risk Manager.
An unauthenticated remote attacker could exploit this vulnerability by handling a file download request on a vulnerable system. Successful exploitation could result in disclosure of information which could be used to further compromise the target system.
Affected Products
IBM Data Risk Manager version 2.0.2
IBM Data Risk Manager version 2.0.3
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.ibm.com/support/pages/node/6195705
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |