Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2016-6038

Directory traversal vulnerability in Eclipse Help in IBM Tivoli Lightweight Infrastructure (aka LWI), as used in AIX 5.3, 6.1, and 7.1, allows remote authenticated users to read arbitrary files via a crafted URL.

  • Published: Sep 26, 2016
  • Updated: Apr 13, 2023
  • CVE: CVE-2016-6038
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

  • Severity: Low
  • Score: 4
  • AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
ibm / aix 5.3 5.3.x
ibm / aix 7.1 7.1.x
ibm / aix 6.1 6.1.x