Описание
Unspecified vulnerability in the Import feature in IBM Rational AppScan Enterprise and AppScan Reporting Console 5.2 through 7.9.x and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary commands on an agent server via a crafted ZIP archive.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:rational_appscan:5.2:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.4:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.5:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.5.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.5.0.1:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.5.0.2:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.6.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.6.0.3:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.7.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.7.0.1:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.7.0.2:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.8.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.8.0.1:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.8.0.2:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.9.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.9.0.1:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.9.0.2:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.9.0.3:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:8.0.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:8.0.0.1:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:8.0.0.2:*:enterprise:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:8.0.1:*:enterprise:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:ibm:rational_appscan:5.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.5.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.6.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:5.6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.7.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.7.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.9.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.9.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:7.9.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:8.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:8.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_appscan:8.0.0.3:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00974
Низкий
8.8 High
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
больше 3 лет назад
Unspecified vulnerability in the Import feature in IBM Rational AppScan Enterprise and AppScan Reporting Console 5.2 through 7.9.x and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary commands on an agent server via a crafted ZIP archive.
EPSS
Процентиль: 76%
0.00974
Низкий
8.8 High
CVSS2
Дефекты
NVD-CWE-noinfo