CVE-2026-4917

IBM Guardium Data Protection 12.1 could allow an administrative user to traverse directories on the system. An attacker could send a specially crafted URL request containing “dot dot” sequences (/../) to write arbitrary files on the system.

More information : https://www.ibm.com/support/pages/node/7270422