Security Appscan Source@8.8 Security Vulnerabilities and Issues — Security Appscan Source@8.8 CVE List

Lucene search

IbmSecurity Appscan Source8.8

5 matches found

CVE•added 2014/12/29 2:59 a.m.•42 views

CVE-2014-6123

IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan Source 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, 9.0 through 9.0.0.1, and 9.0.1 allow local users to obtain sensitive credential information by reading installation logs.

2.1CVSS5.9AI score0.0005EPSS

CVE•added 2018/04/12 9:29 p.m.•37 views

CVE-2014-6120

IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan Source 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, 9.0 through 9.0.0.1, and 9.0.1 allow remote attackers to execute arbitrary commands on the installation server via unspecified vectors. IBM X-Force ID: ...

10CVSS9.2AI score0.0419EPSS

CVE•added 2014/08/12 2:55 p.m.•34 views

CVE-2014-3072

Unspecified vulnerability in the Automation Server in IBM Security AppScan Source 8 through 8.0.0.2, 8.5 through 8.5.0.1, 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, and 9.0 through 9.0.0.1 allows local users to gain privileges by executing a crafted service.

7.2CVSS6.5AI score0.00146EPSS

CVE•added 2014/06/08 11:55 p.m.•32 views

CVE-2014-0936

IBM Security AppScan Source 8.0 through 9.0, when the publish-assessment permission is not properly restricted for the configured database server, transmits cleartext assessment data, which allows remote attackers to obtain sensitive information by sniffing the network.

4.3CVSS6.2AI score0.00237EPSS

CVE•added 2014/10/26 6:55 p.m.•31 views

CVE-2014-4812

The installer in IBM Security AppScan Source 8.x and 9.x through 9.0.1 has an open network port for a debug service, which allows remote attackers to obtain sensitive information by connecting to this port.

1.8CVSS6.2AI score0.0011EPSS