Lucene search
K

6 matches found

Cvelist
Cvelist
added 2014/10/26 6:0 p.m.29 views

CVE-2014-4812

The installer in IBM Security AppScan Source 8.x and 9.x through 9.0.1 has an open network port for a debug service, which allows remote attackers to obtain sensitive information by connecting to this port...

6AI score0.00491EPSS
Exploits0References2
NVD
NVD
added 2014/08/12 2:55 p.m.16 views

CVE-2014-3072

Unspecified vulnerability in the Automation Server in IBM Security AppScan Source 8 through 8.0.0.2, 8.5 through 8.5.0.1, 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, and 9.0 through 9.0.0.1 allows local users to gain privileges by executing a crafted service...

7.2CVSS6.3AI score0.00371EPSS
Exploits0References2
Prion
Prion
added 2014/08/12 2:55 p.m.16 views

Code injection

Unspecified vulnerability in the Automation Server in IBM Security AppScan Source 8 through 8.0.0.2, 8.5 through 8.5.0.1, 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, and 9.0 through 9.0.0.1 allows local users to gain privileges by executing a crafted service...

7.2CVSS6.8AI score0.00371EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2014/08/12 2:0 p.m.23 views

CVE-2014-3072

Unspecified vulnerability in the Automation Server in IBM Security AppScan Source 8 through 8.0.0.2, 8.5 through 8.5.0.1, 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, and 9.0 through 9.0.0.1 allows local users to gain privileges by executing a crafted service...

6.3AI score0.00371EPSS
Exploits0References2
Prion
Prion
added 2014/06/08 11:55 p.m.18 views

Design/Logic Flaw

IBM Security AppScan Source 8.0 through 9.0, when the publish-assessment permission is not properly restricted for the configured database server, transmits cleartext assessment data, which allows remote attackers to obtain sensitive information by sniffing the network...

4.3CVSS6.5AI score0.00626EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2012/06/20 10:0 a.m.45 views

CVE-2012-2173

The CVE concerns IBM Security AppScan Source’s ODBC driver for solidDB. "The ODBC driver in IBM Security AppScan Source 7.x and 8.x before 8.6" transmits an SHA-1 hash of the connection password during database connections, allowing remote attackers to sniff network traffic and obtain sensitive i...

5CVSS6.3AI score0.01173EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder