2 matches found
Checkmarx CxQL Sandbox bypass (CVE-2014-8778)
Checkmarx CxQL Sandbox bypass CVE-2014-8778 Vendor: Checkmarx - www.checkmarx.com Product: CxSuite Version affected: 7.1.5 and prior Credit: Huy-Ngoc DAU @ngocdh of Deloitte Conseil, France ================================ Introduction ================================ Checkmarx is a static source...
CVE-2014-8778
CVE-2014-8778 affects Checkmarx CxSAST/CxQL Sandbox prior to 7.1.8. A remote authenticated attacker can bypass the CxQL sandbox protection by asserting either System.Security.Permissions.PermissionState.Unrestricted or System.Security.Permissions.SecurityPermissionFlag.AllFlags, enabling executio...