CVE-2014-0936

Currently unrated

Key Information:

Vendor: IBM
Status: Security Appscan Source
Vendor: CVE Published:; 8 June 2014

Summary

IBM Security AppScan Source 8.0 through 9.0, when the publish-assessment permission is not properly restricted for the configured database server, transmits cleartext assessment data, which allows remote attackers to obtain sensitive information by sniffing the network.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/92317

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21674750

x_refsource_CONFIRM

Timeline

Vulnerability published
Jun 8, 2014
Vulnerability Reserved
Jan 6, 2014