{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/products/infosphere-optim-test-data-fabrication-1.0.2.3/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":7.5,"id":"CVE-2026-3366"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["InfoSphere Optim Test Data Fabrication (1.0.0)","InfoSphere Optim Test Data Fabrication (1.0.0.1)","InfoSphere Optim Test Data Fabrication (1.0.0.2)","InfoSphere Optim Test Data Fabrication (1.0.2)","InfoSphere Optim Test Data Fabrication (1.0.2.2)","InfoSphere Optim Test Data Fabrication (1.0.2.3)","InfoSphere Optim Test Data Fabrication (1.0.2.4)","InfoSphere Optim Test Data Fabrication (1.0.2.5)","InfoSphere Optim Test Data Fabrication (1.0.2.6)","InfoSphere Optim Test Data Fabrication (1.0.2.7)"],"_cs_severities":["high"],"_cs_tags":["cve","cve-2026-3366","path traversal","webserver"],"_cs_type":"advisory","_cs_vendors":["IBM"],"content_html":"\u003cp\u003eCVE-2026-3366 describes a path traversal vulnerability affecting IBM InfoSphere Optim Test Data Fabrication. The vulnerability resides in versions 1.0.0, 1.0.0.1, 1.0.0.2, 1.0.2, 1.0.2.2, 1.0.2.3, 1.0.2.4, 1.0.2.5, 1.0.2.6, and 1.0.2.7.  A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted URL request containing \u0026ldquo;dot dot\u0026rdquo; sequences (/../). This allows the attacker to bypass intended restrictions and access arbitrary files on the system hosting the application. Successful exploitation allows the attacker to read sensitive files.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eThe attacker identifies an IBM InfoSphere Optim Test Data Fabrication server running a vulnerable version.\u003c/li\u003e\n\u003cli\u003eThe attacker crafts a malicious HTTP GET or POST request targeting a specific endpoint.\u003c/li\u003e\n\u003cli\u003eThe crafted request includes a URL containing \u0026ldquo;dot dot\u0026rdquo; sequences (/../) to traverse directories. For example \u003ccode\u003e/../../../../etc/passwd\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eThe application fails to properly sanitize or validate the requested path.\u003c/li\u003e\n\u003cli\u003eThe application resolves the path, potentially escaping the intended webroot.\u003c/li\u003e\n\u003cli\u003eThe server reads the arbitrary file specified in the crafted path.\u003c/li\u003e\n\u003cli\u003eThe server sends the contents of the file back to the attacker in the HTTP response.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of this path traversal vulnerability (CVE-2026-3366) enables a remote, unauthenticated attacker to read arbitrary files on the affected system. This could lead to the exposure of sensitive information such as configuration files, credentials, or other confidential data. There is no information about the number of victims or targeted sectors.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApply the security patch or upgrade to a non-vulnerable version of IBM InfoSphere Optim Test Data Fabrication as recommended by IBM to remediate CVE-2026-3366.\u003c/li\u003e\n\u003cli\u003eDeploy the Sigma rule \u003ccode\u003eDetect CVE-2026-3366 Path Traversal Attempt\u003c/code\u003e to identify exploitation attempts in web server logs.\u003c/li\u003e\n\u003cli\u003eMonitor web server logs for requests containing \u0026ldquo;dot dot\u0026rdquo; sequences (/../) in the URL, especially requests targeting sensitive file paths.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-05-27T14:19:36Z","date_published":"2026-05-27T14:19:36Z","id":"https://feed.craftedsignal.io/briefs/2026-05-cve-2026-3366-path-traversal/","summary":"IBM InfoSphere Optim Test Data Fabrication versions 1.0.0 through 1.0.2.7 are susceptible to a path traversal vulnerability (CVE-2026-3366), allowing a remote attacker to send a specially crafted URL request containing 'dot dot' sequences (/../) to view arbitrary files on the system.","title":"CVE-2026-3366 — IBM InfoSphere Optim Test Data Fabrication Path Traversal","url":"https://feed.craftedsignal.io/briefs/2026-05-cve-2026-3366-path-traversal/"}],"language":"en","title":"CraftedSignal Threat Feed — InfoSphere Optim Test Data Fabrication (1.0.2.3)","version":"https://jsonfeed.org/version/1.1"}