Rational Policy Tester Security Vulnerabilities and Issues — Rational Policy Tester CVE List

Lucene search

IbmRational Policy Tester

4 matches found

CVE•added 2013/09/09 1:55 a.m.•36 views

CVE-2013-4061

IBM Rational Policy Tester 8.5 before 8.5.0.5 does not properly check authorization for changes to the set of authentication hosts, which allows remote authenticated users to perform spoofing attacks involving an HTTP redirect via unspecified vectors.

4CVSS6.4AI score0.00162EPSS

CVE•added 2013/03/29 4:8 p.m.•32 views

CVE-2013-0473

Multiple cross-site scripting (XSS) vulnerabilities in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allow remote attackers to inject arbitrary web script or HTML via a crafted report.

4.3CVSS5.6AI score0.00289EPSS

CVE•added 2013/03/29 4:9 p.m.•27 views

CVE-2013-0474

The Manual Explore browser plug-in in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allows remote attackers to discover test Platform Authentication credentials via a crafted web site.

4.3CVSS6.6AI score0.00214EPSS

CVE•added 2013/03/29 4:9 p.m.•27 views

CVE-2013-0512

Stack-based buffer overflow in the Manual Explore browser plug-in for Firefox in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allows remote attackers to cause a denial of service (plug-in crash) via a crafted web page.

4.3CVSS7AI score0.00607EPSS