CVE-2014-6122

Currently unrated

Key Information:

Vendor: IBM
Status: Security Appscan; Security Appscan Source
Vendor: CVE Published:; 23 December 2014

Summary

IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote authenticated users to write to arbitrary folders, and consequently execute arbitrary commands, via a modified argument.

References

http://www.securitytracker.com/id/1031427

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/96723

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21693035

x_refsource_CONFIRM

Timeline

Vulnerability published
Dec 23, 2014
Vulnerability Reserved
Sep 2, 2014