Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-6122
HistoryDec 23, 2014 - 2:59 a.m.

CVE-2014-6122

2014-12-2302:59:02
CWE-264
[email protected]
web.nvd.nist.gov
17
cve-2014-6122
ibm
security
appscan
enterprise
remote
authenticated
arbitrary
commands
nvd

5.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:P/A:P

6.9 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

66.4%

JSON

IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote authenticated users to write to arbitrary folders, and consequently execute arbitrary commands, via a modified argument.

Affected configurations

NVD
Node
ibmsecurity_appscanMatch8.5enterprise
OR
ibmsecurity_appscanMatch8.6enterprise
OR
ibmsecurity_appscanMatch8.7enterprise
OR
ibmsecurity_appscanMatch8.8enterprise
OR
ibmsecurity_appscanMatch9.0enterprise
OR
ibmsecurity_appscanMatch9.0.0.1enterprise
OR
ibmsecurity_appscan_sourceMatch9.0.1enterprise

Related

prion 1
cvelist 1
nvd 1
prion
prion
Code injection
2014-12-23 02:59:00
cvelist
cvelist
CVE-2014-6122
2014-12-23 02:00:00
nvd
nvd
CVE-2014-6122
2014-12-23 02:59:02

5.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:P/A:P

6.9 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

66.4%

JSON
Related for CVE-2014-6122
prion1cvelist1nvd1