The server in IBM SPSS Collaboration and Deployment Services 4.x before 4.2.1.3 IF3, 5.x before 5.0 FP3, and 6.x before 6.0 IF1 allows remote attackers to read arbitrary files via an unspecified HTTP request.
2014-02-01T15:55:04.010
2025-04-11T00:51:21.963
Deferred
CVSSv2: 5.0 (MEDIUM)
AV:N/AC:L/Au:N/C:P/I:N/A:N
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | ibm | spss_collaboration_and_deployment_services | 4.1.1.1 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 4.1.1.2 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 4.1.1.3 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 4.2.1 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 4.2.1.1 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 4.2.1.2 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 4.2.1.3 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 5.0.0 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 5.0.0.1 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 5.0.0.2 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 5.0.1 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 5.0.2 | Yes |
| Application | ibm | spss_collaboration_and_deployment_services | 6.0.0.0 | Yes |