Ibm

Security Appscan Source

14 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2014-0936

  • EPSS 0.24%
  • Published 08.06.2014 23:55:02
  • Last modified 12.04.2025 10:46:40

IBM Security AppScan Source 8.0 through 9.0, when the publish-assessment permission is not properly restricted for the configured database server, transmits cleartext assessment data, which allows remote attackers to obtain sensitive information by s...

5.8

CVE-2012-2159

  • EPSS 0.35%
  • Published 20.06.2012 10:27:28
  • Last modified 11.04.2025 00:51:21

Open redirect vulnerability in IBM Eclipse Help System (IEHS), as used in IBM Security AppScan Source 7.x and 8.x before 8.6 and IBM SPSS Data Collection Developer Library 6.0 and 6.0.1, allows remote attackers to redirect users to arbitrary web site...

4.3

CVE-2012-2161

  • EPSS 0.35%
  • Published 20.06.2012 10:27:28
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in deferredView.jsp in IBM Eclipse Help System (IEHS), as used in IBM Security AppScan Source 7.x and 8.x before 8.6 and IBM SPSS Data Collection Developer Library 6.0 and 6.0.1, allows remote attackers to inj...

5

CVE-2012-2173

  • EPSS 0.23%
  • Published 20.06.2012 10:27:28
  • Last modified 11.04.2025 00:51:21

The ODBC driver in IBM Security AppScan Source 7.x and 8.x before 8.6 sends an SHA-1 hash of the connection password during connections to a solidDB database, which allows remote attackers to obtain sensitive information by sniffing the network.